TclTLS: Check-in [db4e2fff2d]

Overview

Comment:	Added function to encrypt and decrypt a file
Downloads:	Tarball \| ZIP archive \| SQL archive
Timelines:	family \| ancestors \| descendants \| both \| crypto
Files:	files \| file ages \| folders
SHA3-256:	db4e2fff2dfcc5ce3f0bff26f1273977f5fdc1d3b2a43e604b87e7483a852753
User & Date:	bohagan on 2023-12-02 20:24:33
Other Links:	branch diff \| manifest \| tags

Context

2023-12-02
21:51		Added function to encrypt and decrypt using object command check-in: ae795d4c23 user: bohagan tags: crypto
20:24		Added function to encrypt and decrypt a file check-in: db4e2fff2d user: bohagan tags: crypto
17:58		Modularized encrypt and decrypt functions check-in: 85d30feee0 user: bohagan tags: crypto

Changes

Hide Diffs Unified Diffs Ignore Whitespace Patch

Modified generic/tlsDigest.c from [995b6c10f9] to [1c3c225c54].

Modified generic/tlsEncrypt.c from [53c870760b] to [748e9b0eb9].

︙			︙
149 150 151 152 153 154 155 156 157 158 159 160 161 162	* ------------------------------------------------------------------- / int DigestInitialize(Tcl_Interp interp, DigestState statePtr, const EVP_MD md, const EVP_CIPHER cipher, Tcl_Obj keyObj, EVP_MAC mac) { int key_len = 0, res = 0; const unsigned char key = NULL; / Create contexts */ switch(statePtr->format & 0xFF0) { case TYPE_MD: statePtr->ctx = EVP_MD_CTX_new(); res = (statePtr->ctx != NULL); break;	> >	149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164	* ------------------------------------------------------------------- / int DigestInitialize(Tcl_Interp interp, DigestState statePtr, const EVP_MD md, const EVP_CIPHER cipher, Tcl_Obj keyObj, EVP_MAC mac) { int key_len = 0, res = 0; const unsigned char key = NULL; dprintf("Called"); / Create contexts */ switch(statePtr->format & 0xFF0) { case TYPE_MD: statePtr->ctx = EVP_MD_CTX_new(); res = (statePtr->ctx != NULL); break;
︙			︙
204 205 206 207 208 209 210 ~~211~~ 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 ~~237~~ 238 239 240 241 242 243 244	------------------------------------------------------------------- * DigestUpdate -- * * Update a hash function with data * * Returns: * 1 if successful or 0 for failure * * Side effects: * Adds buf data to hash function or sets result to error message * ------------------------------------------------------------------- / int DigestUpdate(DigestState statePtr, char buf, size_t read, int do_result) { int res = 0; switch(statePtr->format & 0xFF0) { case TYPE_MD: res = EVP_DigestUpdate(statePtr->ctx, buf, read); break; case TYPE_HMAC: res = HMAC_Update(statePtr->hctx, buf, read); break; case TYPE_CMAC: res = CMAC_Update(statePtr->cctx, buf, read); break; } if (!res && do_result) { Tcl_AppendResult(statePtr->interp, "Update failed: ", REASON(), NULL); return TCL_ERROR; } ~~return ~~res~~;~~ } /* ------------------------------------------------------------------- * DigestFinalize -- *	\| > > > \|	206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249	------------------------------------------------------------------- * DigestUpdate -- * * Update a hash function with data * * Returns: * TCL_OK if successful or TCL_ERROR for failure with result set * to error message if do_result is true. * * Side effects: * Adds buf data to hash function or sets result to error message * ------------------------------------------------------------------- / int DigestUpdate(DigestState statePtr, char buf, size_t read, int do_result) { int res = 0; dprintf("Called"); switch(statePtr->format & 0xFF0) { case TYPE_MD: res = EVP_DigestUpdate(statePtr->ctx, buf, read); break; case TYPE_HMAC: res = HMAC_Update(statePtr->hctx, buf, read); break; case TYPE_CMAC: res = CMAC_Update(statePtr->cctx, buf, read); break; } if (!res && do_result) { Tcl_AppendResult(statePtr->interp, "Update failed: ", REASON(), NULL); return TCL_ERROR; } return TCL_OK; } /* ------------------------------------------------------------------- * DigestFinalize -- *
︙			︙
253 254 255 256 257 258 259 260 261 262 263 264 265 266	* ------------------------------------------------------------------- / int DigestFinalize(Tcl_Interp interp, DigestState statePtr, Tcl_Obj *resultObj) { unsigned char md_buf[EVP_MAX_MD_SIZE]; unsigned int ulen; int res = 0, md_len = 0; / Finalize cryptography function and get result */ switch(statePtr->format & 0xFF0) { case TYPE_MD: if (!(statePtr->format & IS_XOF)) { res = EVP_DigestFinal_ex(statePtr->ctx, md_buf, &ulen); md_len = (int) ulen;	> >	258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273	* ------------------------------------------------------------------- / int DigestFinalize(Tcl_Interp interp, DigestState statePtr, Tcl_Obj *resultObj) { unsigned char md_buf[EVP_MAX_MD_SIZE]; unsigned int ulen; int res = 0, md_len = 0; dprintf("Called"); / Finalize cryptography function and get result */ switch(statePtr->format & 0xFF0) { case TYPE_MD: if (!(statePtr->format & IS_XOF)) { res = EVP_DigestFinal_ex(statePtr->ctx, md_buf, &ulen); md_len = (int) ulen;
︙			︙
432 433 434 435 436 437 438 ~~439~~ 440 441 442 443 444 445 446	/* Get bytes from underlying channel / parent = Tcl_GetStackedChannel(statePtr->self); read = Tcl_ReadRaw(parent, buf, toRead); / Update hash function / if (read > 0) { / Have data / ~~if (!DigestUpdate(statePtr, buf, (size_t) read, 0)) {~~ Tcl_SetChannelError(statePtr->self, Tcl_ObjPrintf("Update failed: %s", REASON())); errorCodePtr = EINVAL; return 0; } /* This is correct / read = -1; errorCodePtr = EAGAIN;	\|	439 440 441 442 443 444 445 446 447 448 449 450 451 452 453	/* Get bytes from underlying channel / parent = Tcl_GetStackedChannel(statePtr->self); read = Tcl_ReadRaw(parent, buf, toRead); / Update hash function / if (read > 0) { / Have data / if (DigestUpdate(statePtr, buf, (size_t) read, 0) != TCL_OK) { Tcl_SetChannelError(statePtr->self, Tcl_ObjPrintf("Update failed: %s", REASON())); errorCodePtr = EINVAL; return 0; } /* This is correct / read = -1; errorCodePtr = EAGAIN;
︙			︙
490 491 492 493 494 495 496 ~~497~~ 498 499 500 501 502 503 504	/* Abort if nothing to process / if (toWrite <= 0 \|\| statePtr->self == (Tcl_Channel) NULL) { return 0; } / Update hash function / ~~if (toWrite > 0 && !DigestUpdate(statePtr, buf, (size_t) toWrite, 0)) {~~ Tcl_SetChannelError(statePtr->self, Tcl_ObjPrintf("Update failed: %s", REASON())); errorCodePtr = EINVAL; return 0; } return toWrite; }	\|	497 498 499 500 501 502 503 504 505 506 507 508 509 510 511	/* Abort if nothing to process / if (toWrite <= 0 \|\| statePtr->self == (Tcl_Channel) NULL) { return 0; } / Update hash function / if (toWrite > 0 && DigestUpdate(statePtr, buf, (size_t) toWrite, 0) != TCL_OK) { Tcl_SetChannelError(statePtr->self, Tcl_ObjPrintf("Update failed: %s", REASON())); errorCodePtr = EINVAL; return 0; } return toWrite; }
︙			︙
751 752 753 754 755 756 757 ~~758 759~~ 760 761 762 763 764 765 766 767 768 769 770	* TCL_OK or TCL_ERROR * * Side effects: * Adds transform to channel and sets result to channel id or error message. * ---------------------------------------------------------------------- / ~~~~static int~~ DigestChannelHandler(Tcl_Interp interp, const char channel, const EVP_MD md,~~ const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { int mode; /* OR-ed combination of TCL_READABLE and TCL_WRITABLE / Tcl_Channel chan; DigestState statePtr; /* Validate args / if (channel == (const char ) NULL) { return TCL_ERROR; } /* Get channel Id */	< \| > >	758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778	* TCL_OK or TCL_ERROR * * Side effects: * Adds transform to channel and sets result to channel id or error message. * ---------------------------------------------------------------------- / static int DigestChannelHandler(Tcl_Interp interp, const char channel, const EVP_MD md, const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { int mode; /* OR-ed combination of TCL_READABLE and TCL_WRITABLE / Tcl_Channel chan; DigestState statePtr; dprintf("Called"); /* Validate args / if (channel == (const char ) NULL) { return TCL_ERROR; } /* Get channel Id */
︙			︙
819 820 821 822 823 824 825 ~~826 827~~ 828 829 830 831 832 833 834 835 836	* TCL_OK or TCL_ERROR * * Side effects: * Removes transform from channel or sets result to error message. * ---------------------------------------------------------------------- / ~~~~static int~~ DigestUnstackObjCmd(ClientData clientData, Tcl_Interp interp, int objc, Tcl_Obj const objv[]) {~~ Tcl_Channel chan; int mode; /* OR-ed combination of TCL_READABLE and TCL_WRITABLE / / Validate arg count */ if (objc != 2) { Tcl_WrongNumArgs(interp, 1, objv, "channelId"); return TCL_ERROR; }	< \| > >	827 828 829 830 831 832 833 834 835 836 837 838 839 840 841 842 843 844 845	* TCL_OK or TCL_ERROR * * Side effects: * Removes transform from channel or sets result to error message. * ---------------------------------------------------------------------- / static int DigestUnstackObjCmd(ClientData clientData, Tcl_Interp interp, int objc, Tcl_Obj const objv[]) { Tcl_Channel chan; int mode; /* OR-ed combination of TCL_READABLE and TCL_WRITABLE / dprintf("Called"); / Validate arg count */ if (objc != 2) { Tcl_WrongNumArgs(interp, 1, objv, "channelId"); return TCL_ERROR; }
︙			︙
875 876 877 878 879 880 881 882 883 884 885 886 887 888	------------------------------------------------------------------- / int DigestInstanceObjCmd(ClientData clientData, Tcl_Interp interp, int objc, Tcl_Obj const objv[]) { DigestState statePtr = (DigestState ) clientData; int fn, len = 0; char buf = NULL; static const char instance_fns [] = { "finalize", "update", NULL }; /* Validate arg count */ if (objc < 2 \|\| objc > 3) { Tcl_WrongNumArgs(interp, 1, objv, "function ?data?"); return TCL_ERROR; }	> >	884 885 886 887 888 889 890 891 892 893 894 895 896 897 898 899	------------------------------------------------------------------- / int DigestInstanceObjCmd(ClientData clientData, Tcl_Interp interp, int objc, Tcl_Obj const objv[]) { DigestState statePtr = (DigestState ) clientData; int fn, len = 0; char buf = NULL; static const char instance_fns [] = { "finalize", "update", NULL }; dprintf("Called"); /* Validate arg count */ if (objc < 2 \|\| objc > 3) { Tcl_WrongNumArgs(interp, 1, objv, "function ?data?"); return TCL_ERROR; }
︙			︙
898 899 900 901 902 903 904 ~~905~~ 906 907 908 909 910 911 912	buf = Tcl_GetByteArrayFromObj(objv[2], &len); } else { Tcl_WrongNumArgs(interp, 1, objv, "update data"); return TCL_ERROR; } /* Update hash function / ~~if (!DigestUpdate(statePtr, buf, (size_t) len, 1)) {~~ return TCL_ERROR; } } else { / Finalize hash function and calculate message digest */ if (DigestFinalize(interp, statePtr, NULL) != TCL_OK) { return TCL_ERROR;	\|	909 910 911 912 913 914 915 916 917 918 919 920 921 922 923	buf = Tcl_GetByteArrayFromObj(objv[2], &len); } else { Tcl_WrongNumArgs(interp, 1, objv, "update data"); return TCL_ERROR; } /* Update hash function / if (DigestUpdate(statePtr, buf, (size_t) len, 1) != TCL_OK) { return TCL_ERROR; } } else { / Finalize hash function and calculate message digest */ if (DigestFinalize(interp, statePtr, NULL) != TCL_OK) { return TCL_ERROR;
︙			︙
954 955 956 957 958 959 960 961 962 963 964 965 966 967	* ------------------------------------------------------------------- / int DigestCommandHandler(Tcl_Interp interp, Tcl_Obj cmdObj, const EVP_MD md, const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { DigestState statePtr; char cmdName = Tcl_GetStringFromObj(cmdObj, NULL); /* Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; }	> >	965 966 967 968 969 970 971 972 973 974 975 976 977 978 979 980	* ------------------------------------------------------------------- / int DigestCommandHandler(Tcl_Interp interp, Tcl_Obj cmdObj, const EVP_MD md, const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { DigestState statePtr; char cmdName = Tcl_GetStringFromObj(cmdObj, NULL); dprintf("Called"); /* Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; }
︙			︙
993 994 995 996 997 998 999 ~~1000 1001~~ 1002 1003 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 1021 ~~1022~~ 1023 1024 1025 1026 1027 1028 1029	* TCL_OK or TCL_ERROR * * Side effects: * Sets result to message digest or error message * ------------------------------------------------------------------- / ~~~~int~~ DigestDataHandler(Tcl_Interp interp, Tcl_Obj dataObj, const EVP_MD md,~~ const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { char data; int data_len; DigestState statePtr; /* Get data / data = Tcl_GetByteArrayFromObj(dataObj, &data_len); if (data == NULL) { Tcl_SetResult(interp, "No data", NULL); return TCL_ERROR; } / Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } /* Calc Digest, abort for error / if (DigestInitialize(interp, statePtr, md, cipher, keyObj, mac) != TCL_OK \|\| ~~DigestUpdate(statePtr, data, (size_t) data_len, 1) ~~== 0~~ \|\|~~ DigestFinalize(interp, statePtr, NULL) != TCL_OK) { DigestStateFree(statePtr); return TCL_ERROR; } / Clean-up */ DigestStateFree(statePtr);	< \| > > \|	1006 1007 1008 1009 1010 1011 1012 1013 1014 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 1025 1026 1027 1028 1029 1030 1031 1032 1033 1034 1035 1036 1037 1038 1039 1040 1041 1042 1043	* TCL_OK or TCL_ERROR * * Side effects: * Sets result to message digest or error message * ------------------------------------------------------------------- / int DigestDataHandler(Tcl_Interp interp, Tcl_Obj dataObj, const EVP_MD md, const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { char data; int data_len; DigestState statePtr; dprintf("Called"); /* Get data / data = Tcl_GetByteArrayFromObj(dataObj, &data_len); if (data == NULL) { Tcl_SetResult(interp, "No data", NULL); return TCL_ERROR; } / Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } /* Calc Digest, abort for error / if (DigestInitialize(interp, statePtr, md, cipher, keyObj, mac) != TCL_OK \|\| DigestUpdate(statePtr, data, (size_t) data_len, 1) != TCL_OK \|\| DigestFinalize(interp, statePtr, NULL) != TCL_OK) { DigestStateFree(statePtr); return TCL_ERROR; } / Clean-up */ DigestStateFree(statePtr);
︙			︙
1043 1044 1045 1046 1047 1048 1049 ~~1050~~ 1051 1052 1053 1054 1055 1056 1057 1058 1059 1060 1061 1062 1063 ~~1064~~ 1065 1066 1067 1068 1069 1070 ~~1071~~ 1072 1073 1074 1075 1076 1077 1078 1079 1080 1081 1082 1083 1084 ~~1085~~ 1086 1087 1088 1089 1090 1091 1092	* TCL_OK or TCL_ERROR * * Side effects: * Result is message digest or error message * ------------------------------------------------------------------- / ~~int DigestFileHandler(Tcl_Interp interp, Tcl_Obj file~~name~~, const EVP_MD md,~~ const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { DigestState statePtr; Tcl_Channel chan = NULL; unsigned char buf[BUFFER_SIZE]; int res = TCL_OK, len; / Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } /* Open file channel, abort for error / ~~chan = Tcl_FSOpenFileChannel(interp, file~~name~~, "rb", 0444);~~ if (chan == (Tcl_Channel) NULL) { DigestStateFree(statePtr); return TCL_ERROR; } / Configure channel / ~~if ((res = Tcl_SetChannelOption(interp, chan, "-translation", "binary")) == TCL_~~ERROR~~) {~~ goto done; } Tcl_SetChannelBufferSize(chan, BUFFER_SIZE); / Initialize hash function / if ((res = DigestInitialize(interp, statePtr, md, cipher, keyObj, mac)) != TCL_OK) { goto done; } / Read file data and update hash function / while (!Tcl_Eof(chan)) { len = Tcl_ReadRaw(chan, (char ) buf, BUFFER_SIZE); if (len > 0) { ~~if (!DigestUpdate(statePtr, &buf[0], (size_t) len, 1)) {~~ res = TCL_ERROR; goto done; } } } /* Finalize hash function and calculate message digest */	\| > > \| \| \|	1057 1058 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 1069 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 1080 1081 1082 1083 1084 1085 1086 1087 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 1098 1099 1100 1101 1102 1103 1104 1105 1106 1107 1108	* TCL_OK or TCL_ERROR * * Side effects: * Result is message digest or error message * ------------------------------------------------------------------- / int DigestFileHandler(Tcl_Interp interp, Tcl_Obj inFileObj, const EVP_MD md, const EVP_CIPHER cipher, int format, Tcl_Obj keyObj, EVP_MAC mac) { DigestState statePtr; Tcl_Channel chan = NULL; unsigned char buf[BUFFER_SIZE]; int res = TCL_OK, len; dprintf("Called"); / Create state data structure / if ((statePtr = DigestStateNew(interp, format)) == NULL) { Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } /* Open file channel, abort for error / chan = Tcl_FSOpenFileChannel(interp, inFileObj, "rb", 0444); if (chan == (Tcl_Channel) NULL) { DigestStateFree(statePtr); return TCL_ERROR; } / Configure channel / if ((res = Tcl_SetChannelOption(interp, chan, "-translation", "binary")) != TCL_OK) { goto done; } Tcl_SetChannelBufferSize(chan, BUFFER_SIZE); / Initialize hash function / if ((res = DigestInitialize(interp, statePtr, md, cipher, keyObj, mac)) != TCL_OK) { goto done; } / Read file data and update hash function / while (!Tcl_Eof(chan)) { len = Tcl_ReadRaw(chan, (char ) buf, BUFFER_SIZE); if (len > 0) { if (DigestUpdate(statePtr, &buf[0], (size_t) len, 1) != TCL_OK) { res = TCL_ERROR; goto done; } } } /* Finalize hash function and calculate message digest */
︙			︙
1238 1239 1240 1241 1242 1243 1244 1245 1246 1247 1248 1249 1250 1251	int idx, start = 1, format = HEX_FORMAT, res = TCL_OK; Tcl_Obj cipherObj = NULL, cmdObj = NULL, dataObj = NULL, digestObj = NULL; Tcl_Obj fileObj = NULL, keyObj = NULL, macObj = NULL; const char channel = NULL, opt; const EVP_MD md = NULL; const EVP_CIPHER cipher = NULL; EVP_MAC mac = NULL; /* Clear interp result / Tcl_ResetResult(interp); / Validate arg count */ if (objc < 3 \|\| objc > 12) { Tcl_WrongNumArgs(interp, 1, objv, "?-bin\|-hex? ?-cipher name? ?-digest name? ?-key key? ?-mac name? [-channel chan \| -command cmdName \| -file filename \| ?-data? data]");	> >	1254 1255 1256 1257 1258 1259 1260 1261 1262 1263 1264 1265 1266 1267 1268 1269	int idx, start = 1, format = HEX_FORMAT, res = TCL_OK; Tcl_Obj cipherObj = NULL, cmdObj = NULL, dataObj = NULL, digestObj = NULL; Tcl_Obj fileObj = NULL, keyObj = NULL, macObj = NULL; const char channel = NULL, opt; const EVP_MD md = NULL; const EVP_CIPHER cipher = NULL; EVP_MAC mac = NULL; dprintf("Called"); /* Clear interp result / Tcl_ResetResult(interp); / Validate arg count */ if (objc < 3 \|\| objc > 12) { Tcl_WrongNumArgs(interp, 1, objv, "?-bin\|-hex? ?-cipher name? ?-digest name? ?-key key? ?-mac name? [-channel chan \| -command cmdName \| -file filename \| ?-data? data]");
︙			︙

︙			︙
13 14 15 16 17 18 19 20 21 22 23 24 25 26	#include <stdio.h> #include <string.h> #include <openssl/evp.h> #if OPENSSL_VERSION_NUMBER >= 0x30000000L #include <openssl/params.h> #endif /* Encryption functions */ #define TYPE_MD 0x010 #define TYPE_HMAC 0x020 #define TYPE_CMAC 0x040 #define TYPE_MAC 0x080 #define TYPE_ENCRYPT 0x100 #define TYPE_DECRYPT 0x200	> > >	13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29	#include <stdio.h> #include <string.h> #include <openssl/evp.h> #if OPENSSL_VERSION_NUMBER >= 0x30000000L #include <openssl/params.h> #endif /* Macros / #define BUFFER_SIZE 32768 / Encryption functions */ #define TYPE_MD 0x010 #define TYPE_HMAC 0x020 #define TYPE_CMAC 0x040 #define TYPE_MAC 0x080 #define TYPE_ENCRYPT 0x100 #define TYPE_DECRYPT 0x200
︙			︙
137 138 139 140 141 142 143 ~~144~~ 145 146 147 148 149 150 151	if (type == TYPE_ENCRYPT) { res = EVP_EncryptUpdate(ctx, outbuf, out_len, data, data_len); } else { res = EVP_DecryptUpdate(ctx, outbuf, out_len, data, data_len); } if (res) { *out_len += len; return TCL_OK; } else { Tcl_AppendResult(interp, "Update failed: ", REASON(), NULL); return TCL_ERROR; } }	<	140 141 142 143 144 145 146 147 148 149 150 151 152 153	if (type == TYPE_ENCRYPT) { res = EVP_EncryptUpdate(ctx, outbuf, out_len, data, data_len); } else { res = EVP_DecryptUpdate(ctx, outbuf, out_len, data, data_len); } if (res) { return TCL_OK; } else { Tcl_AppendResult(interp, "Update failed: ", REASON(), NULL); return TCL_ERROR; } }
︙			︙
175 176 177 178 179 180 181 ~~182~~ 183 184 185 186 187 188 189	if (type == TYPE_ENCRYPT) { res = EVP_EncryptFinal_ex(ctx, outbuf, out_len); } else { res = EVP_DecryptFinal_ex(ctx, outbuf, out_len); } if (res) { *out_len += len; return TCL_OK; } else { Tcl_AppendResult(interp, "Finalize failed: ", REASON(), NULL); return TCL_ERROR; } }	<	177 178 179 180 181 182 183 184 185 186 187 188 189 190	if (type == TYPE_ENCRYPT) { res = EVP_EncryptFinal_ex(ctx, outbuf, out_len); } else { res = EVP_DecryptFinal_ex(ctx, outbuf, out_len); } if (res) { return TCL_OK; } else { Tcl_AppendResult(interp, "Finalize failed: ", REASON(), NULL); return TCL_ERROR; } }
︙			︙
203 204 205 206 207 208 209 ~~210~~ 211 212 213 214 215 216 217	* Sets result or error message * ------------------------------------------------------------------- / int EncryptDataHandler(Tcl_Interp interp, int type, Tcl_Obj dataObj, Tcl_Obj cipherObj, Tcl_Obj digestObj, Tcl_Obj keyObj, Tcl_Obj ivObj) { EVP_CIPHER_CTX ctx = NULL; ~~int data_len = 0, out_len = 0, ~~res~~;~~ unsigned char data, outbuf; Tcl_Obj resultObj; dprintf("Called"); /* Get data */ if (dataObj != NULL) {	\|	204 205 206 207 208 209 210 211 212 213 214 215 216 217 218	* Sets result or error message * ------------------------------------------------------------------- / int EncryptDataHandler(Tcl_Interp interp, int type, Tcl_Obj dataObj, Tcl_Obj cipherObj, Tcl_Obj digestObj, Tcl_Obj keyObj, Tcl_Obj ivObj) { EVP_CIPHER_CTX ctx = NULL; int data_len = 0, out_len = 0, len = 0, res = TCL_OK; unsigned char data, outbuf; Tcl_Obj resultObj; dprintf("Called"); /* Get data */ if (dataObj != NULL) {
︙			︙
228 229 230 231 232 233 234 ~~235~~ 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257	Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } / Perform operation / if (EncryptInitialize(interp, type, &ctx, cipherObj, keyObj, ivObj) != TCL_OK \|\| EncryptUpdate(interp, type, ctx, outbuf, &out_len, data, data_len) != TCL_OK \|\| ~~EncryptFinalize(interp, type, ctx, outbuf+out_len, &~~out_~~len) != TCL_OK) {~~ res = TCL_ERROR; goto done; } done: / Set output result / if (res == TCL_OK) { outbuf = Tcl_SetByteArrayLength(resultObj, out_len); Tcl_SetObjResult(interp, resultObj); } else { Tcl_DecrRefCount(resultObj); / Result is error message / } / Clean up / if (ctx != NULL) { EVP_CIPHER_CTX_free(ctx); } return res; } /******************************************************************/	\| > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >	229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359	Tcl_AppendResult(interp, "Memory allocation error", (char ) NULL); return TCL_ERROR; } / Perform operation / if (EncryptInitialize(interp, type, &ctx, cipherObj, keyObj, ivObj) != TCL_OK \|\| EncryptUpdate(interp, type, ctx, outbuf, &out_len, data, data_len) != TCL_OK \|\| EncryptFinalize(interp, type, ctx, outbuf+out_len, &len) != TCL_OK) { res = TCL_ERROR; goto done; } out_len += len; done: / Set output result / if (res == TCL_OK) { outbuf = Tcl_SetByteArrayLength(resultObj, out_len); Tcl_SetObjResult(interp, resultObj); } else { Tcl_DecrRefCount(resultObj); / Result is error message / } / Clean up / if (ctx != NULL) { EVP_CIPHER_CTX_free(ctx); } return res; } /*****************************************************************/ / ------------------------------------------------------------------- * EncryptFileHandler -- * * Perform encryption function on a block of data and return result. * * Returns: * TCL_OK or TCL_ERROR * * Side effects: * Encrypts or decrypts inFile data to outFile and sets result to * size of outFile, or an error message. * ------------------------------------------------------------------- / int EncryptFileHandler(Tcl_Interp interp, int type, Tcl_Obj inFileObj, Tcl_Obj outFileObj, Tcl_Obj cipherObj, Tcl_Obj digestObj, Tcl_Obj keyObj, Tcl_Obj ivObj) { EVP_CIPHER_CTX ctx = NULL; int total = 0, res, out_len = 0, len; Tcl_Channel in = NULL, out = NULL; unsigned char in_buf[BUFFER_SIZE]; unsigned char out_buf[BUFFER_SIZE+1024]; dprintf("Called"); /* Open input file / if ((in = Tcl_FSOpenFileChannel(interp, inFileObj, "rb", 0444)) == (Tcl_Channel) NULL) { return TCL_ERROR; } / Open output file / if ((out = Tcl_FSOpenFileChannel(interp, outFileObj, "wb", 0644)) == (Tcl_Channel) NULL) { Tcl_Close(interp, in); return TCL_ERROR; } / Initialize operation / if ((res = EncryptInitialize(interp, type, &ctx, cipherObj, keyObj, ivObj)) != TCL_OK) { goto done; } / Read file data from inFile, encrypt/decrypt it, then output to outFile / while (!Tcl_Eof(in)) { int read = Tcl_ReadRaw(in, (char ) in_buf, BUFFER_SIZE); if (read > 0) { if ((res = EncryptUpdate(interp, type, ctx, out_buf, &out_len, in_buf, read)) == TCL_OK) { if (out_len > 0) { len = Tcl_WriteRaw(out, (const char ) out_buf, out_len); if (len >= 0) { total += len; } else { Tcl_AppendResult(interp, "Write error: ", Tcl_ErrnoMsg(Tcl_GetErrno()), (char ) NULL); res = TCL_ERROR; goto done; } } } else { goto done; } } else if (read < 0) { Tcl_AppendResult(interp, "Read error: ", Tcl_ErrnoMsg(Tcl_GetErrno()), (char ) NULL); res = TCL_ERROR; goto done; } } / Finalize data and write any remaining data in block / if ((res = EncryptFinalize(interp, type, ctx, out_buf, &out_len)) == TCL_OK) { if (out_len > 0) { len = Tcl_WriteRaw(out, (const char ) out_buf, out_len); if (len >= 0) { total += len; } else { Tcl_AppendResult(interp, "Write error: ", Tcl_ErrnoMsg(Tcl_GetErrno()), (char ) NULL); res = TCL_ERROR; goto done; } } Tcl_SetObjResult(interp, Tcl_NewIntObj(total)); } else { goto done; } done: / Clean up / if (in != NULL) { Tcl_Close(interp, in); } if (out != NULL) { Tcl_Close(interp, out); } if (ctx != NULL) { EVP_CIPHER_CTX_free(ctx); } return res; } /******************************************************************/
︙			︙
282 283 284 285 286 287 288 ~~289~~ 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 ~~307~~ 308 309 310 311 312 313 314 315 316 317 318 319 ~~320~~ 321 322 ~~323~~ 324 325 326 327 328 329 330	dprintf("Called"); /* Clear interp result / Tcl_ResetResult(interp); / Validate arg count / if (objc < 3 \|\| objc > 12) { ~~Tcl_WrongNumArgs(interp, 1, objv, "-cipher name ?-digest name? ?-key key? ?-iv string? [-data data]");~~ return TCL_ERROR; } / Get options / for (int idx = 1; idx < objc; idx++) { opt = Tcl_GetStringFromObj(objv[idx], NULL); if (opt[0] != '-') { break; } OPTOBJ("-cipher", cipherObj); OPTOBJ("-data", dataObj); OPTOBJ("-digest", digestObj); OPTOBJ("-key", keyObj); OPTOBJ("-iv", ivObj); ~~OPTBAD("option", "-cipher, -data, -digest, -key, or -iv");~~ return TCL_ERROR; } / Check for required options / if (cipherObj == NULL) { Tcl_AppendResult(interp, "No cipher", NULL); } else if (keyObj == NULL) { Tcl_AppendResult(interp, "No key", NULL); return TCL_ERROR; } / Perform encryption function on file, stacked channel, using instance command, or data blob / ~~if (dataObj != NULL) {~~ res = EncryptDataHandler(interp, type, dataObj, cipherObj, digestObj, keyObj, ivObj); } else { ~~Tcl_AppendResult(interp, "No operation specified: Use -data option", NULL);~~ res = TCL_ERROR; } return res; } / *-------------------------------------------------------------------	\| > > \| > > \| \|	384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436	dprintf("Called"); /* Clear interp result / Tcl_ResetResult(interp); / Validate arg count / if (objc < 3 \|\| objc > 12) { Tcl_WrongNumArgs(interp, 1, objv, "-cipher name ?-digest name? -key key ?-iv string? [-infile filename -outfile filename \| -data data]"); return TCL_ERROR; } / Get options / for (int idx = 1; idx < objc; idx++) { opt = Tcl_GetStringFromObj(objv[idx], NULL); if (opt[0] != '-') { break; } OPTOBJ("-cipher", cipherObj); OPTOBJ("-data", dataObj); OPTOBJ("-digest", digestObj); OPTOBJ("-infile", inFileObj); OPTOBJ("-outfile", outFileObj); OPTOBJ("-key", keyObj); OPTOBJ("-iv", ivObj); OPTBAD("option", "-cipher, -data, -digest, -infile, -key, -iv, -outfile"); return TCL_ERROR; } / Check for required options / if (cipherObj == NULL) { Tcl_AppendResult(interp, "No cipher", NULL); } else if (keyObj == NULL) { Tcl_AppendResult(interp, "No key", NULL); return TCL_ERROR; } / Perform encryption function on file, stacked channel, using instance command, or data blob / if (inFileObj != NULL && outFileObj != NULL) { res = EncryptFileHandler(interp, type, inFileObj, outFileObj, cipherObj, digestObj, keyObj, ivObj); } else if (dataObj != NULL) { res = EncryptDataHandler(interp, type, dataObj, cipherObj, digestObj, keyObj, ivObj); } else { Tcl_AppendResult(interp, "No operation specified: Use -data, -infile, or -outfile option", NULL); res = TCL_ERROR; } return res; } / *-------------------------------------------------------------------
︙			︙