summaryrefslogtreecommitdiffstats
path: root/sodcrypto.hh
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-28 09:34:30 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-28 09:34:30 +0000
commit4fc2f55f761d71aae1f145d5aa94ba929cc39676 (patch)
tree5c1e1db3b46dd4edbe11f612d93cb94b96891ce3 /sodcrypto.hh
parentInitial commit. (diff)
downloaddnsdist-4fc2f55f761d71aae1f145d5aa94ba929cc39676.tar.xz
dnsdist-4fc2f55f761d71aae1f145d5aa94ba929cc39676.zip
Adding upstream version 1.7.3.upstream/1.7.3upstream
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'sodcrypto.hh')
-rw-r--r--sodcrypto.hh78
1 files changed, 78 insertions, 0 deletions
diff --git a/sodcrypto.hh b/sodcrypto.hh
new file mode 100644
index 0000000..ca35631
--- /dev/null
+++ b/sodcrypto.hh
@@ -0,0 +1,78 @@
+/*
+ * This file is part of PowerDNS or dnsdist.
+ * Copyright -- PowerDNS.COM B.V. and its contributors
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of version 2 of the GNU General Public License as
+ * published by the Free Software Foundation.
+ *
+ * In addition, for the avoidance of any doubt, permission is granted to
+ * link this program with OpenSSL and to (re)distribute the binaries
+ * produced as the result of such linking.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+ */
+#pragma once
+#include "config.h"
+#include <string>
+#include <stdint.h>
+
+#include <arpa/inet.h>
+
+#ifndef HAVE_LIBSODIUM
+struct SodiumNonce
+{
+ void init(){};
+ void merge(const SodiumNonce& lower, const SodiumNonce& higher) {};
+ void increment(){};
+ unsigned char value[1]{0};
+};
+#else
+#include <sodium.h>
+
+struct SodiumNonce
+{
+ SodiumNonce()
+ {
+ memset(&value, 0, sizeof(value));
+ }
+
+ void init()
+ {
+ randombytes_buf(value, sizeof value);
+ }
+
+ void merge(const SodiumNonce& lower, const SodiumNonce& higher)
+ {
+ static const size_t halfSize = (sizeof value) / 2;
+ memcpy(value, lower.value, halfSize);
+ memcpy(value + halfSize, higher.value + halfSize, halfSize);
+ }
+
+ void increment()
+ {
+ uint32_t* p = (uint32_t*)value;
+ uint32_t count=htonl(*p);
+ *p=ntohl(++count);
+ }
+
+ string toString() const
+ {
+ return string((const char*)value, crypto_secretbox_NONCEBYTES);
+ }
+
+ unsigned char value[crypto_secretbox_NONCEBYTES];
+};
+#endif
+std::string newKeypair();
+std::string sodEncryptSym(const std::string& msg, const std::string& key, SodiumNonce&);
+std::string sodDecryptSym(const std::string& msg, const std::string& key, SodiumNonce&);
+std::string newKey();
+bool sodIsValidKey(const std::string& key);