Set up C project for working on Cryptopals challenges

Author: bricef

.gitignore

@@ -1,3 +1,5 @@
 *.pyc
 *~
 *node_modules*
+*.dSYM
+*.out

Cryptopal-Challenges/brice/Makefile

@@ -0,0 +1,18 @@
+# For OSX, Install openssl with `brew install openssl`
+
+DEBUG=false
+CC=gcc
+
+LIBS= -lssl -lcrypto
+INCLUDES= -I/usr/local/opt/openssl/include
+LDFLAGS= -L/usr/local/opt/openssl/lib
+
+
+ifeq ($(DEBUG),true)
+    CFLAGS="-g -O0"
+else
+    CFLAGS=""
+endif
+
+main:
+	$(CC) $(CFLAGS) src/try.c src/utils.c -o try.out -I./src/ $(LIBS) $(LDFLAGS) $(INCLUDES)

Cryptopal-Challenges/brice/Notes.md

@@ -0,0 +1,4 @@
+TODO
+====
+
+ - [ ] Handle ecb mode with partial plaintext blocks gracefully

Cryptopal-Challenges/brice/api.h

@@ -0,0 +1,53 @@
+#include "common.h"
+
+/*
+ * Block cipher modes of operation
+ */
+Mode MODE_ECB(void);
+Mode MODE_CBC(void);
+
+/*
+ * Available ciphers
+ */
+Cipher AES_128_128(void);
+
+/*
+ * Available padding modes
+ */
+Padding PKCS7(void);
+
+
+typedef ERROR (ENCRYPT_FN)(
+  const unsigned char* plaintext,
+  const int plaintext_length,
+  OUT unsigned char* ciphertext,
+  const int ciphertext_limit,
+  OUT int* encrypted_bytes
+);
+
+typedef ERROR (DECRYPT_FN)(
+  const unsigned char* ciphertext,
+  const int ciphertext_length,
+  OUT unsigned char* plaintext,
+  const int plaintext_limit,
+  OUT int* decrypted_bytes
+);
+
+typedef struct {
+  unsigned char* key;
+  unsigned char* iv;
+  ENCRYPT_FN* encrypt;
+  DECRYPT_FN* decrypt;
+} Cipher;
+
+Cipher CipherInit(
+  Mode mode,
+  Primitive cipher,
+  Padding padding_mode,
+  const unsigned char* key,
+  const unsigned char* iv
+);
+
+const unsigned char* error_string(ERROR);
+
+void log_error(ERROR);

Cryptopal-Challenges/brice/src/common.h

@@ -0,0 +1,73 @@
+
+#define OUT /**/
+
+typedef enum {
+  OK,
+  IV_PROVIDED_IN_ERROR,
+  LIMIT_TOO_SMALL,
+  UNKNOWN_FATAL
+} ERROR;
+
+typedef ERROR (ENCRYPT_BLOCK)(
+  const unsigned char* key,
+  const unsigned char* plainblock,
+  OUT unsigned char* cipherblock
+);
+
+typedef ERROR (DECRYPT_BLOCK)(
+  const unsigned char* key,
+  const unsigned char* cipherblock,
+  OUT unsigned char* plainblock
+);
+
+typedef ERROR (PAD_FN)(
+  const int block_size,
+  const int text_length, /*The length of the text to be padded*/
+  unsigned char* text, /* Pointer to the text buffer, which should be allocated as a multiple of block_size */
+  const int text_limit
+);
+
+typedef ERROR (DEPAD_FN)(
+  const int block_size,
+  unsigned char* text, /* Pointer to the text buffer, We're going to 'depad' by overwriting the padding with '\0' */
+  const int text_limit
+);
+
+typedef struct {
+  int block_size;
+  int key_size;
+  ENCRYPT_BLOCK* encrypt;
+  DECRYPT_BLOCK* decrypt;
+} Primitive;
+
+typedef struct {
+  PAD_FN* pad;
+  DEPAD_FN* depad;
+} Padding;
+
+typedef ERROR (MODE_ENCRYPT)(
+  const Primitive* cipher,
+  const Padding* padding,
+  const unsigned char* key,
+  const unsigned char* iv,
+  const unsigned char* plaintext,
+  const int plaintext_length,
+  OUT unsigned char* ciphertext,
+  const int ciphertext_limit
+);
+
+typedef ERROR (MODE_DECRYPT)(
+  const Primitive* cipher,
+  const Padding* padding,
+  const unsigned char* key,
+  const unsigned char* iv,
+  const unsigned char* ciphertext,
+  const int ciphertext_length,
+  OUT unsigned char* plaintext,
+  const int plaintext_limit
+);
+
+typedef struct {
+  MODE_ENCRYPT* encrypt;
+  MODE_DECRYPT* decrypt;
+} Mode;

Cryptopal-Challenges/brice/src/main.c

@@ -0,0 +1,42 @@
+#include <stdlib.h>
+
+#include "common.h"
+
+int main(){
+  ERROR status = OK;
+
+  /* For example: */
+  Cipher AES_ECB = CipherInit(
+    MODE_ECB(),
+    RIJNDAEL_128_128(),
+    PKCS7(),
+    "YELLOW SUBMARINE",
+    "I AM AN INIT VEC"
+  );
+
+
+  unsigned char original[] = "My big secret";
+  int original_length = strlen(original);
+
+  int ciphertext_limit = 64;
+  unsigned char ciphertext[ciphertext_limit];
+  int encrypted_bytes = 0;
+
+  if(OK != (status = AES_ECB.encrypt(original, original_length, ciphertext, ciphertext_limit, &encrypted_bytes))){
+    log_error(status);
+    exit(1);
+  };
+
+  int plaintext_limit = 64;
+  unsigned char plaintext[plaintext_limit];
+  int decrypted_bytes = 0;
+
+  if(OK != (status = AES_ECB.decrypt(ciphertext, encrypted_bytes, plaintext, plaintext_limit, &decrypted_bytes))){
+    log_error(status);
+    exit(1);
+  };
+
+  printf("ORIGINAL: ");print_hex(original);printf("\n");
+  printf("CIPHERTEXT: ");print_hex(ciphertext);printf("\n");
+  printf("PLAINTEXT: ");print_hex(plaintext);printf("\n");
+}

Cryptopal-Challenges/brice/src/try.c

@@ -0,0 +1,164 @@
+/*
+ * Implement CBC mode
+ *
+ * CBC mode is a block cipher mode that allows us to encrypt
+ * irregularly-sized messages, despite the fact that a block
+ * cipher natively only transforms individual blocks.
+ *
+ * In CBC mode, each ciphertext block is added to the next
+ * plaintext block before the next call to the cipher core.
+ *
+ * The first plaintext block, which has no associated previous
+ * ciphertext block, is added to a "fake 0th ciphertext block"
+ * called the initialization vector, or IV.
+ *
+ * Implement CBC mode by hand by taking the ECB function you
+ * wrote earlier, making it encrypt instead of decrypt (verify
+ * this by decrypting whatever you encrypt to test), and using
+ * your XOR function from the previous exercise to combine them.
+ *
+ * The file here is intelligible (somewhat) when CBC decrypted
+ * against "YELLOW SUBMARINE" with an IV of all ASCII 0
+ * (\x00\x00\x00 &c)
+ */
+
+#include <stdio.h>
+#include <string.h>
+#include <stdlib.h>
+
+#include <openssl/conf.h>
+#include <openssl/evp.h>
+#include <openssl/err.h>
+
+#include "utils.h"
+#include "common.h"
+
+
+static const int NO_PADDING = 0;
+static const int BLOCK_SIZE = 16;
+
+void handleErrors(void){
+  ERR_print_errors_fp(stderr);
+  abort();
+}
+
+void aes_encrypt_block(const unsigned char* plaintext, const unsigned char* key, unsigned char* ciphertext){
+  EVP_CIPHER_CTX *ctx;
+  int outlen, tmplen;
+
+  // Create and initialise the context
+  if(!(ctx = EVP_CIPHER_CTX_new())){
+    handleErrors();
+  }
+
+  // Initialises context with cipher
+   if(1 != EVP_EncryptInit_ex(ctx, EVP_aes_128_ecb(), NULL, key, NULL)){
+     handleErrors();
+   }
+
+   // Don't PCKS5 pad
+   EVP_CIPHER_CTX_set_padding(ctx, NO_PADDING);
+
+   // Encrypt plaintext
+   if(1 != EVP_EncryptUpdate(ctx, ciphertext, &outlen , plaintext, BLOCK_SIZE)){
+     handleErrors();
+   }
+
+   // Finalise the encryption.
+   if(1 != EVP_EncryptFinal_ex(ctx, ciphertext + outlen, &tmplen)){
+     handleErrors();
+   }
+
+   // Clean up
+   EVP_CIPHER_CTX_free(ctx);
+}
+
+void aes_decrypt_block(const unsigned char* ciphertext, const unsigned char* key, unsigned char* plaintext){
+  EVP_CIPHER_CTX *ctx;
+  int outlen, tmplen;
+
+  // Create and initialise the context
+  if(!(ctx = EVP_CIPHER_CTX_new())){
+    handleErrors();
+  }
+
+  // Initialises context with cipher
+   if(1 != EVP_DecryptInit_ex(ctx, EVP_aes_128_ecb(), NULL, key, NULL)){
+     handleErrors();
+   }
+
+   // Don't PCKS5 pad
+   EVP_CIPHER_CTX_set_padding(ctx, NO_PADDING);
+
+   // Encrypt plaintext
+   if(1 != EVP_DecryptUpdate(ctx, plaintext, &outlen , ciphertext, BLOCK_SIZE)){
+     handleErrors();
+   }
+
+   // Finalise the encryption.
+   if(1 != EVP_DecryptFinal_ex(ctx, plaintext + outlen, &tmplen)){
+     handleErrors();
+   }
+
+   // Clean up
+   EVP_CIPHER_CTX_free(ctx);
+
+}
+
+
+void test_basic_block_encryption(){
+  unsigned char original[] = "TO BE OR NOT TO ";
+  unsigned char key[]   = "YELLOW SUBMARINE";
+
+  unsigned char ciphertext[64];
+  unsigned char plaintext[64];
+  memset(ciphertext, 0, 64);
+  memset(plaintext, 0, 64);
+
+  printf("ORIGINAL: >%s<\n", original);
+  printf("ORIGINAL: ");print_hex(original);printf("\n");
+  aes_encrypt_block(original, key, ciphertext);
+  aes_decrypt_block(ciphertext, key, plaintext);
+  printf("CIPHERTEXT: ");print_hex(ciphertext);printf("\n");
+  printf("PLAINTEXT: ");print_hex(plaintext);printf("\n");
+  printf("PLAINTEXT: >%s<\n", plaintext);
+}
+
+
+void decrypt_ecb(
+  const unsigned char* ciphertext,
+  const unsigned char* key,
+  const int len,
+  unsigned char* plaintext
+){
+  for( int offset = 0; offset < len; offset+=BLOCK_SIZE){
+    aes_decrypt_block(ciphertext+offset, key, plaintext+offset);
+  }
+}
+
+
+int main (int argc, char** agrv){
+  // test_basic_block_encryption();
+  unsigned char * ciphertext = NULL;
+  long length = read_to_buffer("aes-test.dat", &ciphertext);
+
+  if (!ciphertext){
+    printf("No ciphertext found!\n");
+    return 1;
+  }
+
+  unsigned char* plaintext = calloc(length, sizeof(unsigned char)+BLOCK_SIZE+BLOCK_SIZE);
+
+  if(!plaintext){
+    printf("Calloc returned null for some reason o_O?\n");
+    free(ciphertext);
+    return 1;
+  }
+
+  decrypt_ecb(ciphertext, (unsigned char *)"YELLOW SUBMARINE", length, plaintext);
+  printf(">>%s\n", plaintext);
+
+  free(plaintext);
+  free(ciphertext);
+  return 0;
+}

Cryptopal-Challenges/brice/src/utils.c

@@ -0,0 +1,27 @@
+#include <stdio.h>
+#include <stdlib.h>
+
+#include "utils.h"
+
+void print_hex(const unsigned char *s){
+  while(*s)
+    printf("%02x ", (unsigned int) *s++);
+}
+
+long read_to_buffer(const char* filename, unsigned char** buffer){
+  long length = 0;
+  FILE * f = fopen (filename, "rb");
+
+  if (f){
+    fseek (f, 0, SEEK_END);
+    length = ftell (f);
+    fseek (f, 0, SEEK_SET);
+    *buffer = malloc (length);
+    if (*buffer)
+    {
+      fread (*buffer, 1, length, f);
+    }
+    fclose (f);
+  }
+  return length;
+}

Cryptopal-Challenges/brice/src/utils.h

@@ -0,0 +1,5 @@
+
+
+
+void print_hex(const unsigned char *s);
+long read_to_buffer(const char* filename, unsigned char** buffer);