Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169
  1. // onetimepad.cpp
  2. // Copyright (C) 2006-2007 MicroNeil Research Corporation
  3. #include <cstdlib>
  4. #include <ctime>
  5. #include "onetimepad.hpp"
  6. #include "timing.hpp"
  7. using namespace std;
  8. /*
  9. class OneTimePad { // One Time Pad generator.
  10. private:
  11. MANGLER PagGenerator; // MANGLER as a PRNG.
  12. PadBuffer Entropy(int Length = 1024); // System entropy source.
  13. public:
  14. ** OneTimePad(); // Constructor initializes w/ Entropy.
  15. ** PadBuffer Pad(int Length); // Get a pad of Length.
  16. ** void addEntropy(); // Add entropy from the system source.
  17. ** void addEntropy(PadBuffer Entropy); // Add entropy from this source.
  18. };
  19. */
  20. ////////////////////////////////////////////////////////////////////////////////
  21. // Platform specific strong entropy sourcing.
  22. #ifdef WIN32
  23. //// WIN32 Strong Entropy Source == CryptGenRandom() ///////////////////////////
  24. #include <windows.h>
  25. #include <wincrypt.h>
  26. namespace CodeDweller {
  27. PadBuffer OneTimePad::Entropy(int Length) { // Get a PadBuffer full of randomness.
  28. PadBuffer Buffer(Length, 0); // Start by initializing the buffer.
  29. HCRYPTPROV provider = 0; // We will need a handle for the source.
  30. if( // Try a two different sources.
  31. !CryptAcquireContext( // If we can get a hardware source
  32. &provider, NULL, NULL, PROV_INTEL_SEC, CRYPT_VERIFYCONTEXT)) { // from an intel CPU then use that first.
  33. if( // If we can't use get that
  34. !CryptAcquireContext( // entropy source for some reason then
  35. &provider, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT)) { // try to use the RSA source. That should
  36. // always work, but if it doesn't we need
  37. provider = 0; // to know about it so we'll have a zero
  38. } // handle.
  39. }
  40. if(0 != provider) { // If we did get a good source then
  41. CryptGenRandom (provider, Length, (BYTE*)&Buffer[0]); // grab the random bit required and
  42. CryptReleaseContext(provider,0); // then let the provider go.
  43. StrongEntropyFlag = true; // We DID get strong entropy.
  44. }
  45. else { // If we did not get a good source
  46. StrongEntropyFlag = false; // then we are not strong.
  47. }
  48. return Buffer; // Return the data we got.
  49. }
  50. #else
  51. //// *NIX Strong Entropy Source == /dev/urandom ////////////////////////////////
  52. #include <fstream>
  53. namespace CodeDweller {
  54. PadBuffer OneTimePad::Entropy(int Length) { // Get Length bytes of strong entropy.
  55. PadBuffer Buffer(Length, 0); // Initialize a buffer to hold them.
  56. try { // Handle this in a try block.
  57. ifstream Source("/dev/urandom", ios::binary); // Open /dev/urandom if possible.
  58. Source.read(reinterpret_cast<char*>(&Buffer[0]), Length); // Read data into the buffer.
  59. if(!Source.bad() && Source.gcount() == Length) { // If we got what we came for then
  60. StrongEntropyFlag = true; // we have strong cryptography.
  61. } else { // If we didn't then we are not
  62. StrongEntropyFlag = false; // strong, and don't have things
  63. } // to make us go.
  64. Source.close(); // We're done, so close the stream.
  65. }
  66. catch(...) { // If we had an exception then we
  67. StrongEntropyFlag = false; // did not get strong entropy.
  68. }
  69. return Buffer; // Return the buffer.
  70. }
  71. #endif
  72. // End Platform Specific Bits
  73. ////////////////////////////////////////////////////////////////////////////////
  74. // Lightweight entropy is built from a combination of the time in ms UTC that
  75. // the application was started, the number of milliseconds since that time in
  76. // milliseconds, the number and times of calls to addLightweightEntropy(), and
  77. // the state of the MANGLER engine at each call -- that state is effected by
  78. // the combined previous use of the MANGLER and any other entropy that was
  79. // added including the timing of those events (since they all trigger the
  80. // addLightweightEntropy() function.
  81. Timer OneTimePadRunTimer; // Millisecond entropy source.
  82. msclock LightweightEntropyBuffer; // Lightweight entropy bucket.
  83. void OneTimePad::addLightweightEntropy() { // Add entropy based on the
  84. msclock StartFill = OneTimePadRunTimer.getStartClock(); // initial start time of the app
  85. msclock ElapsedFill = OneTimePadRunTimer.getElapsedTime(); // and the number of millisecs since.
  86. msclock CombinedFill = StartFill ^ ElapsedFill; // XOR the two together to combine.
  87. CombinedFill = CombinedFill ^ LightweightEntropyBuffer; // Pick up some previous state entropy.
  88. unsigned char* PrimerBuffer = (unsigned char*) &CombinedFill; // Treat the value as a bunch of bytes.
  89. unsigned char* EntropyBuffer = (unsigned char*) &LightweightEntropyBuffer; // Likewise with the entropy buffer.
  90. for(int unsigned i = 0; i < sizeof(msclock); i++) { // Fold bytes into the mangler one
  91. EntropyBuffer[i] += // byte at a time, capturing the
  92. PadGenerator.Encrypt( // the results and using one extra
  93. PadGenerator.Encrypt(PrimerBuffer[i])); // round per byte to increase the
  94. } // amount of guessing an attacker
  95. } // needs to do.
  96. void OneTimePad::addEntropy() { // Add strong entropy if available.
  97. PadBuffer Fill = Entropy(); // Grab the entropy bits to add.
  98. for(int unsigned i = 0; i < Fill.size(); i++) { // Pump them in one byte at a
  99. PadGenerator.Encrypt( // time and then run an extra
  100. PadGenerator.Encrypt(Fill.at(i))); // round per byte to increase the
  101. } // amount of guessing an attacker
  102. } // needs to do.
  103. void OneTimePad::addEntropy(PadBuffer Entropy) { // Add entropy from a given source.
  104. addLightweightEntropy(); // Start with some lightweight entropy.
  105. for(int unsigned i = 0; i < Entropy.size(); i++) { // Then loop through the provided
  106. PadGenerator.Encrypt( // entropy and mix it in with one
  107. PadGenerator.Encrypt(Entropy.at(i))); // extra round per byte to increase
  108. } // the amount of guessing an attacker
  109. } // needs to do.
  110. PadBuffer OneTimePad::Pad(int Length) { // Grab a pad of a specific length.
  111. addLightweightEntropy(); // Add some lightweight entropy.
  112. PadBuffer Output; Output.reserve(Length); // Create a buffer the right size.
  113. srand(clock() + rand()); // Mix things up a tiny bit.
  114. unsigned char x = rand() % 256; // Starting with slightly random
  115. for(int i = 0; i < Length; i++) // char, fill the buffer with
  116. Output.push_back(x = PadGenerator.Encrypt(x)); // random bytes from the mangler.
  117. return Output; // Return the new pad.
  118. }
  119. void* OneTimePad::fill(void* Object, int Size) { // Fill *Object with random bytes.
  120. PadBuffer FillData = Pad(Size); // Get a Pad of the correct size.
  121. unsigned char* Ptr = reinterpret_cast<unsigned char*>(Object); // Reinterpret the pointer type.
  122. for(int i = 0; i < Size; i++) Ptr[i] = FillData.at(i); // Fill the object with the Pad.
  123. return Object; // Return the object.
  124. }
  125. bool OneTimePad::isStrong() { return StrongEntropyFlag; } // Tell them if I'm strong!
  126. OneTimePad::OneTimePad() { // Initialize the one time pad.
  127. addLightweightEntropy(); // Add lightweight entropy.
  128. addEntropy(); // Add cryptographic entropy.
  129. srand(clock() + rand()); // Mix things up a tiny bit.
  130. unsigned char x = rand() % 256; // Starting with slightly random
  131. for(int i = 0; i < 1024; i++) { // character, run 1024 rounds to
  132. x = PadGenerator.Encrypt(x); // reduce the predictability of the
  133. } // initial Mangler state.
  134. } // The OneTimePad object is ready.
  135. }