Add methods for generating RSA Key Pair in synccrypto module

2024-09-21 09:42:10 +02:00 · 2019-07-06 19:52:44 +05:30 · 2019-07-06 19:52:44 +05:30 · f0e656e719
commit f0e656e719
parent 60b807499b
2 changed files with 57 additions and 0 deletions
--- a/src/lib/sync/synccrypto.cpp
+++ b/src/lib/sync/synccrypto.cpp
@ -20,10 +20,34 @@
 #include <nettle/sha2.h>
 #include <nettle/hkdf.h>
 #include <nettle/hmac.h>
+#include <nettle/rsa.h>
+#include <nettle/cbc.h>

 #include <QByteArray>
 #include <QString>

+#include <random>
+
+/* This function is required for Nettle's RSA support.
+ * We are not using random_ctx, instead we are using C++11's <random>'s
+ * Merseinne Twister.
+ */
+void generateRandomBytes(void* randomCtx, size_t numBytes, u_char* out)
+{
+    Q_UNUSED(randomCtx);
+
+    std::random_device device;
+    std::mt19937 generator(device());
+
+    // Generate a uniform int distribution in range of 0 to 255, that is 8-bit range
+    std::uniform_int_distribution<std::mt19937::result_type> distribution(0, 255);
+
+    for (size_t i = 0; i < numBytes; ++i) {
+        out[i] = (u_char)distribution(generator);
+    }
+}
+
+
 u_char *syncCryptoHkdf(QByteArray *in, QByteArray *info, size_t out_len)
 {
    hmac_sha256_ctx *ctx = new hmac_sha256_ctx;
@ -103,3 +127,28 @@ void deriveKeyFetchToken(QByteArray *keyFetchToken, QByteArray *tokenId, QByteAr
    temp2->remove(0, len);
    respXORKey->append(*temp2);
 }
+
+RSAKeyPair  *generateRSAKeyPair()
+{
+    RSAKeyPair *keyPair = new RSAKeyPair();
+    rsa_public_key publicKey;
+    rsa_private_key privateKey;
+
+    rsa_public_key_init(&publicKey);
+    rsa_private_key_init(&privateKey);
+
+    // Set public key exponent to a small Fermat prime number
+    mpz_set_ui(publicKey.e, 65537);
+
+    // Using key size 2048 for security
+    int success = rsa_generate_keypair(&publicKey, &privateKey,
+                                       NULL, generateRandomBytes,
+                                       NULL, NULL, 2048, 0);
+
+    Q_ASSERT(success);
+
+    keyPair->m_publicKey = publicKey;
+    keyPair->m_privateKey = privateKey;
+
+    return keyPair;
+}
--- a/src/lib/sync/synccrypto.h
+++ b/src/lib/sync/synccrypto.h
@ -19,10 +19,18 @@

 #include <QByteArray>
 #include <QString>
+#include <nettle/rsa.h>

 #define SHA256_DIGEST_SIZE 32

+struct RSAKeyPair {
+    rsa_public_key m_publicKey;
+    rsa_private_key m_privateKey;
+};
+
+void generateRandomBytes(void *randomCtx, size_t numBytes, u_char *out);
 u_char *syncCryptoHkdf(QByteArray *in, QByteArray *info, size_t out_len);
 void syncCryptoKW(QByteArray *kw, QString name);
 void deriveSessionToken(QByteArray *sessionToken, QByteArray *tokenId, QByteArray *reqHMACKey, QByteArray *reqKey);
 void deriveKeyFetchToken(QByteArray *keyFetchToken, QByteArray *tokenId, QByteArray *reqHMACKey, QByteArray *respHMACKey, QByteArray *respXORKey);
+RSAKeyPair  *generateRSAKeyPair();