AuroraRuntime/Source/Crypto/ECC/PrivateECCImpl.cpp

/***
    Copyright (C) 2021 J Reece Wilson (a/k/a "Reece"). All rights reserved.
    
    File: PrivateECCImpl.cpp
    File: ECCGeneric.cpp
    Date: 2021-9-17
    File: KCryptoECC.cpp
    Date: 2021-1-15
    Author: Reece
***/
#include <Source/RuntimeInternal.hpp>
#include "ECC.hpp"
#include "ECCGeneric.hpp"
#include "ECCCurves.hpp"
#include "PrivateECCImpl.hpp"
#include "PublicECCImpl.hpp"

namespace Aurora::Crypto::ECC
{
    PrivateECCImpl::PrivateECCImpl(EECCCurve type, ecc_key &key) : _key(key), _type(type)
    {

    }

    PrivateECCImpl::~PrivateECCImpl()
    {
        ecc_free(&this->_key);
    }

    EECCCurve PrivateECCImpl::GetType()
    {
        return this->_type;
    }

    bool PrivateECCImpl::Sign(const AuMemoryViewRead &plainText,
                              AuHashing::EHashType method,
                              AuByteBuffer &out)
    {
        const int salt = 0;
        
        if (!plainText.HasMemory())
        {
            SysPushErrorParam();
            return {};
        }
        
        int hash = ::Crypto::HashMethodToId(method);
        if (hash == 0xFF)
        {
            SysPushErrorCrypt("invalid hash {}", AuUInt(method));
            return false;
        }
        
        if (!AuTryResize(out, 1024))
        {
            SysPushErrorMem();
            return false;
        }
        
        AuByteBuffer hashVec;
        
        if (!AuTryResize(hashVec, 128))
        {
            SysPushErrorMem();
            return false;
        }
        
        unsigned long hashSize = hashVec.size();
        auto ret = ::hash_memory(hash,
                                 AuReinterpretCast<const unsigned char *>(plainText.ptr), plainText.length,
                                 AuReinterpretCast<unsigned char *>(hashVec.data()), &hashSize);
        if (ret != CRYPT_OK)
        {
            SysPushErrorCrypt("{}", ret);
            return false;
        }
        
        return Sign(hashVec, out);
    }

    bool PrivateECCImpl::Sign(const AuMemoryViewRead &hash,
                              AuByteBuffer &out)
    {
        int iRet;
        prng_state yarrow_prng;

        if (!hash.HasMemory())
        {
            SysPushErrorParam();
            return {};
        }
    
        if (!out.GetOrAllocateLinearWriteable(1024))
        {
            SysPushErrorMem();
            return {};
        }

        iRet = yarrow_start(&yarrow_prng);
        if (iRet != CRYPT_OK)
        {
            SysPushErrorCrypt("{}", iRet);
            return false;
        }

        unsigned long len = 1024;
        iRet = ::ecc_sign_hash_ex(AuReinterpretCast<const unsigned char *>(hash.ptr), hash.length,
                                  out.writePtr, &len,
                                  &yarrow_prng,
                                  ::Crypto::gPrngYarrow,
                                  LTC_ECCSIG_ETH27,
                                  nullptr,
                                  &this->_key);
        if (iRet != CRYPT_OK)
        {
            SysPushErrorCrypt("{}", iRet);
            return false;
        }

        out.writePtr += len;

        return true;
    }

    bool PrivateECCImpl::ECDH(const AuSPtr<IECCPublic> &partnerPublic,
                              AuByteBuffer &sharedKey)
    {
        auto writeView = sharedKey.GetOrAllocateLinearWriteable(128);
        if (!writeView)
        {
            SysPushErrorMem();
            return {};
        }

        if (partnerPublic->GetType() != this->GetType())
        {
            SysPushErrorCrypto("Can not EDCH with incompatible curve type (noting ed25519 requires translation to x25519)");
            return false;
        }

        unsigned long actualSize = 128;
        auto ret = ::ecc_shared_secret(&this->_key,
                                       &(AuReinterpretCast<PublicECCImpl>(partnerPublic)->GetKey()),
                                       sharedKey.writePtr,
                                       &actualSize);
        if (ret != CRYPT_OK)
        {
            SysPushErrorCrypt("{}", ret);
            return false;
        }
        
        sharedKey.writePtr += actualSize;
        
        return true;
    }

    bool PrivateECCImpl::AsPublicECC(AuByteBuffer &out)
    {
        return ExportECCKey(this->_key, true, out);
    }

    bool PrivateECCImpl::AsPrivateECC(AuByteBuffer &out)
    {
        return ExportECCKey(this->_key, false, out);
    }
}
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`/***`
			`Copyright (C) 2021 J Reece Wilson (a/k/a "Reece"). All rights reserved.`
[] potential bug in x25519 sign: was using the linear base ptr instead of write after alloc or validate [] old copy/pasted ecdh function clearly wasnt tested in its now form :( [*] clean up 2022-09-25 08:25:33 +00:00
			`File: PrivateECCImpl.cpp`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`File: ECCGeneric.cpp`
			`Date: 2021-9-17`
[] potential bug in x25519 sign: was using the linear base ptr instead of write after alloc or validate [] old copy/pasted ecdh function clearly wasnt tested in its now form :( [*] clean up 2022-09-25 08:25:33 +00:00			`File: KCryptoECC.cpp`
			`Date: 2021-1-15`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`Author: Reece`
			`***/`
[*] Major change in include convention 2021-09-30 14:57:41 +00:00			`#include <Source/RuntimeInternal.hpp>`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`#include "ECC.hpp"`
			`#include "ECCGeneric.hpp"`
			`#include "ECCCurves.hpp"`
			`#include "PrivateECCImpl.hpp"`
			`#include "PublicECCImpl.hpp"`

			`namespace Aurora::Crypto::ECC`
			`{`
[+] Network + Protocol + TLS - Initial Commit ============================================================================= Network ]==================================================================== ============================================================================= [+] Added (very) early Aurora::IO::Net implementation [+] AuNet::EHostnameType [+] AuNet::EIPProtocol [+] AuNet::ENetworkError [+] AuNet::ETransportProtocol [+] AuNet::INetInterface [+] AuNet::INetSrvDatagram [+] AuNet::INetSrvResolve [+] AuNet::INetSrvSockets [+] AuNet::INetSrvWorkers [+] AuNet::INetWorker [+] AuNet::IPAddress [+] AuNet::IResolver [+] AuNet::ISocket [+] AuNet::IResolver [+] AuNet::ISocketBase [+] AuNet::ISocketChannel [+] AuNet::ISocketDriver [+] AuNet::ISocketDriverFactory [+] AuNet::ISocketServer [+] AuNet::ISocketServerDriver [+] AuNet::NetEndpoint [+] AuNet::NetError [+] AuNet::NetHostname (+implementation) ============================================================================= Protocol ]=================================================================== ============================================================================= [+] IProtocolInterceptor [+] IProtocolInterceptorEx [+] IProtocolStack (+implementation) ============================================================================= TLS ]======================================================================== ============================================================================= [+] ITLSContext [+] TLSProtocolRecv [+] TLSProtocolSend (+implementation) ============================================================================= IO Bug Fixes ]=============================================================== ============================================================================= [] IOProcessor::SubmitIOWorkItem should signal the CvEvent, forcing at least once future tick (wont optimize with if in tick & not yet dispatched work items) [] Split IOPipeWork in into IOPipeProcessor header [+] IOPipeWork::GetBuffer (internal reallocation) [] Harden against IAsyncTransactions without a loop source [] Missing null `if (processor->listener)` in IOProcessor [] Solved some soft-lock conditions under Linux's LoopQueue (added deferred commits) [] Quick hack: IOProcessor::HasItems() should OR the early can-tick check function. ============================================================================= Other ]====================================================================== ============================================================================= [+] Linux: LSSignalCatcher [+] `static void AuResetMember(Aurora::Memory::ByteBuffer &ref)` for AuROXTL [] Attempt to enforce a normalization and don't overwrite-readptr-under-istreamwriters policy in ByteBuffer_ReadWrite (circular buffers) [] Bad ECC ctors ============================================================================= Known issues ]=============================================================== ============================================================================= > Linux net is nowhere near done > UDP socket emulation layer isn't implemented > Ciphersuite API is a stub > Private key API is a stub > ...therefore no TLS servers > Missing thread safety precautions under net > Net implementation is still beri early 2022-08-28 19:02:06 +00:00			`PrivateECCImpl::PrivateECCImpl(EECCCurve type, ecc_key &key) : _key(key), _type(type)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`

			`}`

			`PrivateECCImpl::~PrivateECCImpl()`
			`{`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`ecc_free(&this->_key);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`

			`EECCCurve PrivateECCImpl::GetType()`
			`{`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`return this->_type;`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`

[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`bool PrivateECCImpl::Sign(const AuMemoryViewRead &plainText,`
[-] Redundant AuCrypto::EHashType (replaced with the complete AuHashing::EHashType) [*] Minor RSA refactor 2022-09-25 09:56:03 +00:00			`AuHashing::EHashType method,`
[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`AuByteBuffer &out)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
			`const int salt = 0;`

			`if (!plainText.HasMemory())`
			`{`
			`SysPushErrorParam();`
			`return {};`
			`}`

[-] Redundant AuCrypto::EHashType (replaced with the complete AuHashing::EHashType) [*] Minor RSA refactor 2022-09-25 09:56:03 +00:00			`int hash = ::Crypto::HashMethodToId(method);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`if (hash == 0xFF)`
			`{`
[*] Not a day goes by without Roman Medvedev giving me grief (Updated fmtlib after 3 years lol) 2024-02-16 13:07:28 +00:00			`SysPushErrorCrypt("invalid hash {}", AuUInt(method));`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`return false;`
			`}`

			`if (!AuTryResize(out, 1024))`
			`{`
			`SysPushErrorMem();`
			`return false;`
			`}`

[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`AuByteBuffer hashVec;`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00
			`if (!AuTryResize(hashVec, 128))`
			`{`
			`SysPushErrorMem();`
			`return false;`
			`}`

			`unsigned long hashSize = hashVec.size();`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`auto ret = ::hash_memory(hash,`
			`AuReinterpretCast<const unsigned char *>(plainText.ptr), plainText.length,`
			`AuReinterpretCast<unsigned char *>(hashVec.data()), &hashSize);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`if (ret != CRYPT_OK)`
			`{`
			`SysPushErrorCrypt("{}", ret);`
			`return false;`
			`}`

			`return Sign(hashVec, out);`
			`}`

[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`bool PrivateECCImpl::Sign(const AuMemoryViewRead &hash,`
			`AuByteBuffer &out)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[*] i don't believe yarrow_start is necessary, but just in case, register the yarrows cipher state ahead of rsa/ecc calls 2022-09-25 10:19:43 +00:00			`int iRet;`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`prng_state yarrow_prng;`

			`if (!hash.HasMemory())`
			`{`
			`SysPushErrorParam();`
			`return {};`
			`}`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00
[] potential bug in x25519 sign: was using the linear base ptr instead of write after alloc or validate [] old copy/pasted ecdh function clearly wasnt tested in its now form :( [*] clean up 2022-09-25 08:25:33 +00:00			`if (!out.GetOrAllocateLinearWriteable(1024))`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
			`SysPushErrorMem();`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`return {};`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`

[*] i don't believe yarrow_start is necessary, but just in case, register the yarrows cipher state ahead of rsa/ecc calls 2022-09-25 10:19:43 +00:00			`iRet = yarrow_start(&yarrow_prng);`
			`if (iRet != CRYPT_OK)`
			`{`
			`SysPushErrorCrypt("{}", iRet);`
			`return false;`
			`}`

[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`unsigned long len = 1024;`
[*] i don't believe yarrow_start is necessary, but just in case, register the yarrows cipher state ahead of rsa/ecc calls 2022-09-25 10:19:43 +00:00			`iRet = ::ecc_sign_hash_ex(AuReinterpretCast<const unsigned char *>(hash.ptr), hash.length,`
			`out.writePtr, &len,`
			`&yarrow_prng,`
			`::Crypto::gPrngYarrow,`
			`LTC_ECCSIG_ETH27,`
			`nullptr,`
			`&this->_key);`
			`if (iRet != CRYPT_OK)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[*] i don't believe yarrow_start is necessary, but just in case, register the yarrows cipher state ahead of rsa/ecc calls 2022-09-25 10:19:43 +00:00			`SysPushErrorCrypt("{}", iRet);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`return false;`
			`}`
[*] i don't believe yarrow_start is necessary, but just in case, register the yarrows cipher state ahead of rsa/ecc calls 2022-09-25 10:19:43 +00:00
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`out.writePtr += len;`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00
			`return true;`
			`}`

			`bool PrivateECCImpl::ECDH(const AuSPtr<IECCPublic> &partnerPublic,`
[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`AuByteBuffer &sharedKey)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`auto writeView = sharedKey.GetOrAllocateLinearWriteable(128);`
			`if (!writeView)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
			`SysPushErrorMem();`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`return {};`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00
[] potential bug in x25519 sign: was using the linear base ptr instead of write after alloc or validate [] old copy/pasted ecdh function clearly wasnt tested in its now form :( [*] clean up 2022-09-25 08:25:33 +00:00			`if (partnerPublic->GetType() != this->GetType())`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[] potential bug in x25519 sign: was using the linear base ptr instead of write after alloc or validate [] old copy/pasted ecdh function clearly wasnt tested in its now form :( [*] clean up 2022-09-25 08:25:33 +00:00			`SysPushErrorCrypto("Can not EDCH with incompatible curve type (noting ed25519 requires translation to x25519)");`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`return false;`
			`}`

[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`unsigned long actualSize = 128;`
			`auto ret = ::ecc_shared_secret(&this->_key,`
			`&(AuReinterpretCast<PublicECCImpl>(partnerPublic)->GetKey()),`
			`sharedKey.writePtr,`
			`&actualSize);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`if (ret != CRYPT_OK)`
			`{`
			`SysPushErrorCrypt("{}", ret);`
			`return false;`
			`}`

[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`sharedKey.writePtr += actualSize;`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00
			`return true;`
			`}`

[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`bool PrivateECCImpl::AsPublicECC(AuByteBuffer &out)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`return ExportECCKey(this->_key, true, out);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`

[*] Begin truncating mapped types 2022-01-20 16:37:22 +00:00			`bool PrivateECCImpl::AsPrivateECC(AuByteBuffer &out)`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`{`
[] transition some of the old vector based AuByteBuffer APIs to be stream aware [] fix: runnersRunning was uninitialized [*] fix: unimplemented path in GetOrAllocateLinearWriteable 2022-09-19 05:42:39 +00:00			`return ExportECCKey(this->_key, false, out);`
[+] More crypto copypasta 2021-09-21 01:54:47 +00:00			`}`
			`}`