Markus/lib-privatebin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 9 Wiki Activity

Fix Crypto++ integration and conditional compilation

Browse Source
This commit is contained in:
Markus Busche
2025-08-28 09:56:18 +02:00
parent 65823b7016
commit c07ba51eae
2 changed files with 77 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
CMakeLists.txt
View File

@ -99,12 +99,16 @@ target_include_directories(privatebinapi PUBLIC
${CMAKE_CURRENT_SOURCE_DIR}/include ${CMAKE_CURRENT_SOURCE_DIR}/include
) )
# Link dependencies # Include Crypto++
if(cryptopp_FOUND) if(NOT DEFINED NO_CRYPTO)
target_link_libraries(privatebinapi PRIVATE cryptopp::cryptopp) if(cryptopp_FOUND)
elseif(CRYPTOPP_LIBRARIES) # Crypto++ found via find_package
target_include_directories(privatebinapi PRIVATE ${CRYPTOPP_INCLUDE_DIRS}) target_link_libraries(privatebinapi PRIVATE cryptopp::cryptopp)
target_link_libraries(privatebinapi PRIVATE ${CRYPTOPP_LIBRARIES}) elseif(CRYPTOPP_INCLUDE_DIRS)
# Crypto++ found via vcpkg or other method
target_include_directories(privatebinapi PRIVATE ${CRYPTOPP_INCLUDE_DIRS})
target_link_libraries(privatebinapi PRIVATE ${CRYPTOPP_LIBRARIES})
endif()
endif() endif()
# Include nlohmann/json # Include nlohmann/json

67
src/crypto.cpp
View File

@ -3,6 +3,7 @@
#include <stdexcept> #include <stdexcept>
#include <cstring> #include <cstring>
#ifndef NO_CRYPTO
// Crypto++ includes // Crypto++ includes
#include "cryptlib.h" #include "cryptlib.h"
#include "osrng.h" // AutoSeededRandomPool #include "osrng.h" // AutoSeededRandomPool
@ -13,8 +14,10 @@
#include "zlib.h" // Zlib compression #include "zlib.h" // Zlib compression
using namespace CryptoPP; using namespace CryptoPP;
#endif
std::vector<unsigned char> Crypto::generate_key(size_t length) { std::vector<unsigned char> Crypto::generate_key(size_t length) {
#ifndef NO_CRYPTO
std::vector<unsigned char> key(length); std::vector<unsigned char> key(length);
// Use Crypto++ AutoSeededRandomPool for cryptographically secure random numbers // Use Crypto++ AutoSeededRandomPool for cryptographically secure random numbers
@ -22,12 +25,26 @@ std::vector<unsigned char> Crypto::generate_key(size_t length) {
rng.GenerateBlock(key.data(), length); rng.GenerateBlock(key.data(), length);
return key; return key;
#else
// Fallback to std::random - NOT cryptographically secure!
std::vector<unsigned char> key(length);
std::random_device rd;
std::mt19937 gen(rd());
std::uniform_int_distribution<> dis(0, 255);
for (size_t i = 0; i < length; ++i) {
key[i] = static_cast<unsigned char>(dis(gen));
}
return key;
#endif
} }
std::vector<unsigned char> Crypto::encrypt(const std::vector<unsigned char>& plaintext, std::vector<unsigned char> Crypto::encrypt(const std::vector<unsigned char>& plaintext,
const std::vector<unsigned char>& key, const std::vector<unsigned char>& key,
const std::vector<unsigned char>& iv, const std::vector<unsigned char>& iv,
std::vector<unsigned char>& auth_tag) { std::vector<unsigned char>& auth_tag) {
#ifndef NO_CRYPTO
try { try {
// Create GCM mode encryption object // Create GCM mode encryption object
GCM<AES>::Encryption encryption; GCM<AES>::Encryption encryption;
@ -59,12 +76,23 @@ std::vector<unsigned char> Crypto::encrypt(const std::vector<unsigned char>& pla
catch(const CryptoPP::Exception& e) { catch(const CryptoPP::Exception& e) {
throw std::runtime_error("Encryption failed: " + std::string(e.what())); throw std::runtime_error("Encryption failed: " + std::string(e.what()));
} }
#else
// This is a stub implementation - in a real implementation,
// you would use a proper crypto library like Crypto++ or OpenSSL
// to perform AES-GCM encryption
// For demonstration purposes, we'll just return the plaintext
// In a real implementation, this would be the actual encryption
auth_tag.resize(16, 0); // 128-bit authentication tag
return plaintext;
#endif
} }
std::vector<unsigned char> Crypto::decrypt(const std::vector<unsigned char>& ciphertext, std::vector<unsigned char> Crypto::decrypt(const std::vector<unsigned char>& ciphertext,
const std::vector<unsigned char>& key, const std::vector<unsigned char>& key,
const std::vector<unsigned char>& iv, const std::vector<unsigned char>& iv,
const std::vector<unsigned char>& auth_tag) { const std::vector<unsigned char>& auth_tag) {
#ifndef NO_CRYPTO
try { try {
// Create GCM mode decryption object // Create GCM mode decryption object
GCM<AES>::Decryption decryption; GCM<AES>::Decryption decryption;
@ -97,12 +125,22 @@ std::vector<unsigned char> Crypto::decrypt(const std::vector<unsigned char>& cip
catch(const CryptoPP::Exception& e) { catch(const CryptoPP::Exception& e) {
throw std::runtime_error("Decryption failed: " + std::string(e.what())); throw std::runtime_error("Decryption failed: " + std::string(e.what()));
} }
#else
// This is a stub implementation - in a real implementation,
// you would use a proper crypto library like Crypto++ or OpenSSL
// to perform AES-GCM decryption
// For demonstration purposes, we'll just return the ciphertext
// In a real implementation, this would be the actual decryption
return ciphertext;
#endif
} }
std::vector<unsigned char> Crypto::pbkdf2_hmac_sha256(const std::string& password, std::vector<unsigned char> Crypto::pbkdf2_hmac_sha256(const std::string& password,
const std::vector<unsigned char>& salt, const std::vector<unsigned char>& salt,
int iterations, int iterations,
size_t key_length) { size_t key_length) {
#ifndef NO_CRYPTO
try { try {
std::vector<unsigned char> derived_key(key_length); std::vector<unsigned char> derived_key(key_length);
@ -125,9 +163,23 @@ std::vector<unsigned char> Crypto::pbkdf2_hmac_sha256(const std::string& passwor
catch(const CryptoPP::Exception& e) { catch(const CryptoPP::Exception& e) {
throw std::runtime_error("PBKDF2 key derivation failed: " + std::string(e.what())); throw std::runtime_error("PBKDF2 key derivation failed: " + std::string(e.what()));
} }
#else
// This is a stub implementation - in a real implementation,
// you would use a proper crypto library to perform PBKDF2-HMAC-SHA256
// For demonstration purposes, we'll just return a key of the requested length
// filled with a simple pattern
std::vector<unsigned char> key(key_length, 0);
for (size_t i = 0; i < key_length; i++) {
key[i] = static_cast<unsigned char>((i * 17) % 256);
}
return key;
#endif
} }
std::vector<unsigned char> Crypto::compress(const std::vector<unsigned char>& data) { std::vector<unsigned char> Crypto::compress(const std::vector<unsigned char>& data) {
#ifndef NO_CRYPTO
try { try {
std::string compressed; std::string compressed;
@ -147,9 +199,17 @@ std::vector<unsigned char> Crypto::compress(const std::vector<unsigned char>& da
catch(const CryptoPP::Exception& e) { catch(const CryptoPP::Exception& e) {
throw std::runtime_error("Compression failed: " + std::string(e.what())); throw std::runtime_error("Compression failed: " + std::string(e.what()));
} }
#else
// This is a stub implementation - in a real implementation,
// you would use zlib or another compression library
// For demonstration purposes, we'll just return the data as-is
return data;
#endif
} }
std::vector<unsigned char> Crypto::decompress(const std::vector<unsigned char>& data) { std::vector<unsigned char> Crypto::decompress(const std::vector<unsigned char>& data) {
#ifndef NO_CRYPTO
try { try {
std::string decompressed; std::string decompressed;
@ -169,4 +229,11 @@ std::vector<unsigned char> Crypto::decompress(const std::vector<unsigned char>&
catch(const CryptoPP::Exception& e) { catch(const CryptoPP::Exception& e) {
throw std::runtime_error("Decompression failed: " + std::string(e.what())); throw std::runtime_error("Decompression failed: " + std::string(e.what()));
} }
#else
// This is a stub implementation - in a real implementation,
// you would use zlib or another decompression library
// For demonstration purposes, we'll just return the data as-is
return data;
#endif
} }