KeePassLib finally portable (but version 2.19)

Windows Store project stub

ModernKeePassLib/Cryptography/Cipher/CipherPool.cs

@@ -0,0 +1,157 @@
+/*
+  KeePass Password Safe - The Open-Source Password Manager
+  Copyright (C) 2003-2012 Dominik Reichl <dominik.reichl@t-online.de>
+
+  This program is free software; you can redistribute it and/or modify
+  it under the terms of the GNU General Public License as published by
+  the Free Software Foundation; either version 2 of the License, or
+  (at your option) any later version.
+
+  This program is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You should have received a copy of the GNU General Public License
+  along with this program; if not, write to the Free Software
+  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+*/
+
+using System;
+using System.Collections.Generic;
+
+namespace ModernKeePassLib.Cryptography.Cipher
+{
+    /// <summary>
+    /// Pool of encryption/decryption algorithms (ciphers).
+    /// </summary>
+    public sealed class CipherPool
+	{
+		private List<ICipherEngine> m_vCiphers = new List<ICipherEngine>();
+		private static CipherPool m_poolGlobal = null;
+
+		/// <summary>
+		/// Reference to the global cipher pool.
+		/// </summary>
+		public static CipherPool GlobalPool
+		{
+			get
+			{
+				if(m_poolGlobal != null) return m_poolGlobal;
+
+				m_poolGlobal = new CipherPool();
+				m_poolGlobal.AddCipher(new StandardAesEngine());
+
+				return m_poolGlobal;
+			}
+		}
+
+		/// <summary>
+		/// Remove all cipher engines from the current pool.
+		/// </summary>
+		public void Clear()
+		{
+			m_vCiphers.Clear();
+		}
+
+		/// <summary>
+		/// Add a cipher engine to the pool.
+		/// </summary>
+		/// <param name="csEngine">Cipher engine to add. Must not be <c>null</c>.</param>
+		public void AddCipher(ICipherEngine csEngine)
+		{
+			Debug.Assert(csEngine != null);
+			if(csEngine == null) throw new ArgumentNullException("csEngine");
+
+			// Return if a cipher with that ID is registered already.
+			for(int i = 0; i < m_vCiphers.Count; ++i)
+				if(m_vCiphers[i].CipherUuid.EqualsValue(csEngine.CipherUuid))
+					return;
+
+			m_vCiphers.Add(csEngine);
+		}
+
+		/// <summary>
+		/// Get a cipher identified by its UUID.
+		/// </summary>
+		/// <param name="uuidCipher">UUID of the cipher to return.</param>
+		/// <returns>Reference to the requested cipher. If the cipher is
+		/// not found, <c>null</c> is returned.</returns>
+		public ICipherEngine GetCipher(PwUuid uuidCipher)
+		{
+			foreach(ICipherEngine iEngine in m_vCiphers)
+			{
+				if(iEngine.CipherUuid.EqualsValue(uuidCipher))
+					return iEngine;
+			}
+
+			return null;
+		}
+
+		/// <summary>
+		/// Get the index of a cipher. This index is temporary and should
+		/// not be stored or used to identify a cipher.
+		/// </summary>
+		/// <param name="uuidCipher">UUID of the cipher.</param>
+		/// <returns>Index of the requested cipher. Returns <c>-1</c> if
+		/// the specified cipher is not found.</returns>
+		public int GetCipherIndex(PwUuid uuidCipher)
+		{
+			for(int i = 0; i < m_vCiphers.Count; ++i)
+			{
+				if(m_vCiphers[i].CipherUuid.EqualsValue(uuidCipher))
+					return i;
+			}
+
+			Debug.Assert(false);
+			return -1;
+		}
+
+		/// <summary>
+		/// Get the index of a cipher. This index is temporary and should
+		/// not be stored or used to identify a cipher.
+		/// </summary>
+		/// <param name="strDisplayName">Name of the cipher. Note that
+		/// multiple ciphers can have the same name. In this case, the
+		/// first matching cipher is returned.</param>
+		/// <returns>Cipher with the specified name or <c>-1</c> if
+		/// no cipher with that name is found.</returns>
+		public int GetCipherIndex(string strDisplayName)
+		{
+			for(int i = 0; i < m_vCiphers.Count; ++i)
+				if(m_vCiphers[i].DisplayName == strDisplayName)
+					return i;
+
+			Debug.Assert(false);
+			return -1;
+		}
+
+		/// <summary>
+		/// Get the number of cipher engines in this pool.
+		/// </summary>
+		public int EngineCount
+		{
+			get { return m_vCiphers.Count; }
+		}
+
+		/// <summary>
+		/// Get the cipher engine at the specified position. Throws
+		/// an exception if the index is invalid. You can use this
+		/// to iterate over all ciphers, but do not use it to
+		/// identify ciphers.
+		/// </summary>
+		/// <param name="nIndex">Index of the requested cipher engine.</param>
+		/// <returns>Reference to the cipher engine at the specified
+		/// position.</returns>
+		public ICipherEngine this[int nIndex]
+		{
+			get
+			{
+				if((nIndex < 0) || (nIndex >= m_vCiphers.Count))
+					throw new ArgumentOutOfRangeException("nIndex");
+
+				return m_vCiphers[nIndex];
+			}
+		}
+	}
+}

ModernKeePassLib/Cryptography/Cipher/ICipherEngine.cs

@@ -0,0 +1,66 @@
+/*
+  KeePass Password Safe - The Open-Source Password Manager
+  Copyright (C) 2003-2012 Dominik Reichl <dominik.reichl@t-online.de>
+
+  This program is free software; you can redistribute it and/or modify
+  it under the terms of the GNU General Public License as published by
+  the Free Software Foundation; either version 2 of the License, or
+  (at your option) any later version.
+
+  This program is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You should have received a copy of the GNU General Public License
+  along with this program; if not, write to the Free Software
+  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+*/
+
+using System;
+using System.IO;
+
+namespace ModernKeePassLib.Cryptography.Cipher
+{
+	/// <summary>
+	/// Interface of an encryption/decryption class.
+	/// </summary>
+	public interface ICipherEngine
+	{
+		/// <summary>
+		/// UUID of the engine. If you want to write an engine/plugin,
+		/// please contact the KeePass team to obtain a new UUID.
+		/// </summary>
+		PwUuid CipherUuid
+		{
+			get;
+		}
+
+		/// <summary>
+		/// String displayed in the list of available encryption/decryption
+		/// engines in the GUI.
+		/// </summary>
+		string DisplayName
+		{
+			get;
+		}
+
+		/// <summary>
+		/// Encrypt a stream.
+		/// </summary>
+		/// <param name="sPlainText">Stream to read the plain-text from.</param>
+		/// <param name="pbKey">Key to use.</param>
+		/// <param name="pbIV">Initialization vector.</param>
+		/// <returns>Stream, from which the encrypted data can be read.</returns>
+		Stream EncryptStream(Stream sPlainText, byte[] pbKey, byte[] pbIV);
+
+		/// <summary>
+		/// Decrypt a stream.
+		/// </summary>
+		/// <param name="sEncrypted">Stream to read the encrypted data from.</param>
+		/// <param name="pbKey">Key to use.</param>
+		/// <param name="pbIV">Initialization vector.</param>
+		/// <returns>Stream, from which the decrypted data can be read.</returns>
+		Stream DecryptStream(Stream sEncrypted, byte[] pbKey, byte[] pbIV);
+	}
+}

ModernKeePassLib/Cryptography/Cipher/Salsa20Cipher.cs

@@ -0,0 +1,188 @@
+/*
+  KeePass Password Safe - The Open-Source Password Manager
+  Copyright (C) 2003-2012 Dominik Reichl <dominik.reichl@t-online.de>
+
+  This program is free software; you can redistribute it and/or modify
+  it under the terms of the GNU General Public License as published by
+  the Free Software Foundation; either version 2 of the License, or
+  (at your option) any later version.
+
+  This program is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You should have received a copy of the GNU General Public License
+  along with this program; if not, write to the Free Software
+  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+*/
+
+// Implementation of the Salsa20 cipher, based on the eSTREAM submission.
+
+using System;
+using System.Diagnostics;
+
+using ModernKeePassLib.Utility;
+
+namespace ModernKeePassLib.Cryptography.Cipher
+{
+	public sealed class Salsa20Cipher
+	{
+		private uint[] m_state = new uint[16];
+		private uint[] m_x = new uint[16]; // Working buffer
+
+		private byte[] m_output = new byte[64];
+		private int m_outputPos = 64;
+
+		private static readonly uint[] m_sigma = new uint[4]{
+			0x61707865, 0x3320646E, 0x79622D32, 0x6B206574
+		};
+
+		public Salsa20Cipher(byte[] pbKey32, byte[] pbIV8)
+		{
+			KeySetup(pbKey32);
+			IvSetup(pbIV8);
+		}
+
+		~Salsa20Cipher()
+		{
+			// Clear sensitive data
+			Array.Clear(m_state, 0, m_state.Length);
+			Array.Clear(m_x, 0, m_x.Length);
+		}
+
+		private void NextOutput()
+		{
+			uint[] x = m_x; // Local alias for working buffer
+
+			// Compiler/runtime might remove array bound checks after this
+			if(x.Length < 16) throw new InvalidOperationException();
+
+			Array.Copy(m_state, x, 16);
+
+			unchecked
+			{
+				for(int i = 0; i < 10; ++i) // (int i = 20; i > 0; i -= 2)
+				{
+					x[ 4] ^= Rotl32(x[ 0] + x[12],  7);
+					x[ 8] ^= Rotl32(x[ 4] + x[ 0],  9);
+					x[12] ^= Rotl32(x[ 8] + x[ 4], 13);
+					x[ 0] ^= Rotl32(x[12] + x[ 8], 18);
+					x[ 9] ^= Rotl32(x[ 5] + x[ 1],  7);
+					x[13] ^= Rotl32(x[ 9] + x[ 5],  9);
+					x[ 1] ^= Rotl32(x[13] + x[ 9], 13);
+					x[ 5] ^= Rotl32(x[ 1] + x[13], 18);
+					x[14] ^= Rotl32(x[10] + x[ 6],  7);
+					x[ 2] ^= Rotl32(x[14] + x[10],  9);
+					x[ 6] ^= Rotl32(x[ 2] + x[14], 13);
+					x[10] ^= Rotl32(x[ 6] + x[ 2], 18);
+					x[ 3] ^= Rotl32(x[15] + x[11],  7);
+					x[ 7] ^= Rotl32(x[ 3] + x[15],  9);
+					x[11] ^= Rotl32(x[ 7] + x[ 3], 13);
+					x[15] ^= Rotl32(x[11] + x[ 7], 18);
+					x[ 1] ^= Rotl32(x[ 0] + x[ 3],  7);
+					x[ 2] ^= Rotl32(x[ 1] + x[ 0],  9);
+					x[ 3] ^= Rotl32(x[ 2] + x[ 1], 13);
+					x[ 0] ^= Rotl32(x[ 3] + x[ 2], 18);
+					x[ 6] ^= Rotl32(x[ 5] + x[ 4],  7);
+					x[ 7] ^= Rotl32(x[ 6] + x[ 5],  9);
+					x[ 4] ^= Rotl32(x[ 7] + x[ 6], 13);
+					x[ 5] ^= Rotl32(x[ 4] + x[ 7], 18);
+					x[11] ^= Rotl32(x[10] + x[ 9],  7);
+					x[ 8] ^= Rotl32(x[11] + x[10],  9);
+					x[ 9] ^= Rotl32(x[ 8] + x[11], 13);
+					x[10] ^= Rotl32(x[ 9] + x[ 8], 18);
+					x[12] ^= Rotl32(x[15] + x[14],  7);
+					x[13] ^= Rotl32(x[12] + x[15],  9);
+					x[14] ^= Rotl32(x[13] + x[12], 13);
+					x[15] ^= Rotl32(x[14] + x[13], 18);
+				}
+
+				for(int i = 0; i < 16; ++i)
+					x[i] += m_state[i];
+
+				for(int i = 0; i < 16; ++i)
+				{
+					m_output[i << 2] = (byte)x[i];
+					m_output[(i << 2) + 1] = (byte)(x[i] >> 8);
+					m_output[(i << 2) + 2] = (byte)(x[i] >> 16);
+					m_output[(i << 2) + 3] = (byte)(x[i] >> 24);
+				}
+
+				m_outputPos = 0;
+				++m_state[8];
+				if(m_state[8] == 0) ++m_state[9];
+			}
+		}
+
+		private static uint Rotl32(uint x, int b)
+		{
+			unchecked
+			{
+				return ((x << b) | (x >> (32 - b)));
+			}
+		}
+
+		private static uint U8To32Little(byte[] pb, int iOffset)
+		{
+			unchecked
+			{
+				return ((uint)pb[iOffset] | ((uint)pb[iOffset + 1] << 8) |
+					((uint)pb[iOffset + 2] << 16) | ((uint)pb[iOffset + 3] << 24));
+			}
+		}
+
+		private void KeySetup(byte[] k)
+		{
+			if(k == null) throw new ArgumentNullException("k");
+			if(k.Length != 32) throw new ArgumentException();
+
+			m_state[1] = U8To32Little(k, 0);
+			m_state[2] = U8To32Little(k, 4);
+			m_state[3] = U8To32Little(k, 8);
+			m_state[4] = U8To32Little(k, 12);
+			m_state[11] = U8To32Little(k, 16);
+			m_state[12] = U8To32Little(k, 20);
+			m_state[13] = U8To32Little(k, 24);
+			m_state[14] = U8To32Little(k, 28);
+			m_state[0] = m_sigma[0];
+			m_state[5] = m_sigma[1];
+			m_state[10] = m_sigma[2];
+			m_state[15] = m_sigma[3];
+		}
+
+		private void IvSetup(byte[] pbIV)
+		{
+			if(pbIV == null) throw new ArgumentNullException("pbIV");
+			if(pbIV.Length != 8) throw new ArgumentException();
+
+			m_state[6] = U8To32Little(pbIV, 0);
+			m_state[7] = U8To32Little(pbIV, 4);
+			m_state[8] = 0;
+			m_state[9] = 0;
+		}
+
+		public void Encrypt(byte[] m, int nByteCount, bool bXor)
+		{
+			if(m == null) throw new ArgumentNullException("m");
+			if(nByteCount > m.Length) throw new ArgumentException();
+
+			int nBytesRem = nByteCount, nOffset = 0;
+			while(nBytesRem > 0)
+			{
+				Debug.Assert((m_outputPos >= 0) && (m_outputPos <= 64));
+				if(m_outputPos == 64) NextOutput();
+				Debug.Assert(m_outputPos < 64);
+
+				int nCopy = Math.Min(64 - m_outputPos, nBytesRem);
+
+				if(bXor) MemUtil.XorArray(m_output, m_outputPos, m, nOffset, nCopy);
+				else Array.Copy(m_output, m_outputPos, m, nOffset, nCopy);
+
+				m_outputPos += nCopy;
+				nBytesRem -= nCopy;
+				nOffset += nCopy;
+			}
+		}
+	}
+}

ModernKeePassLib/Cryptography/Cipher/StandardAesEngine.cs

@@ -0,0 +1,146 @@
+/*
+  KeePass Password Safe - The Open-Source Password Manager
+  Copyright (C) 2003-2012 Dominik Reichl <dominik.reichl@t-online.de>
+
+  This program is free software; you can redistribute it and/or modify
+  it under the terms of the GNU General Public License as published by
+  the Free Software Foundation; either version 2 of the License, or
+  (at your option) any later version.
+
+  This program is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You should have received a copy of the GNU General Public License
+  along with this program; if not, write to the Free Software
+  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+*/
+
+
+using System;
+using System.IO;
+
+using ModernKeePassLib.Resources;
+using ModernKeePassLib.Serialization;
+
+namespace ModernKeePassLib.Cryptography.Cipher
+{
+    /// <summary>
+    /// Standard AES cipher implementation.
+    /// </summary>
+    public sealed class StandardAesEngine : ICipherEngine
+	{
+	//	private const CipherMode m_rCipherMode = CipherMode.CBC;
+	//	private const PaddingMode m_rCipherPadding = PaddingMode.PKCS7;
+
+		private static PwUuid m_uuidAes = null;
+
+		/// <summary>
+		/// UUID of the cipher engine. This ID uniquely identifies the
+		/// AES engine. Must not be used by other ciphers.
+		/// </summary>
+		public static PwUuid AesUuid
+		{
+			get
+			{
+				if(m_uuidAes == null)
+				{
+					m_uuidAes = new PwUuid(new byte[]{
+						0x31, 0xC1, 0xF2, 0xE6, 0xBF, 0x71, 0x43, 0x50,
+						0xBE, 0x58, 0x05, 0x21, 0x6A, 0xFC, 0x5A, 0xFF });
+				}
+
+				return m_uuidAes;
+			}
+		}
+ 
+		/// <summary>
+		/// Get the UUID of this cipher engine as <c>PwUuid</c> object.
+		/// </summary>
+		public PwUuid CipherUuid
+		{
+			get { return StandardAesEngine.AesUuid; }
+		}
+
+		/// <summary>
+		/// Get a displayable name describing this cipher engine.
+		/// </summary>
+		public string DisplayName { get { return KLRes.EncAlgorithmAes; } }
+
+		private static void ValidateArguments(Stream stream, bool bEncrypt, byte[] pbKey, byte[] pbIV)
+		{
+			Debug.Assert(stream != null); if(stream == null) throw new ArgumentNullException("stream");
+
+			Debug.Assert(pbKey != null); if(pbKey == null) throw new ArgumentNullException("pbKey");
+			Debug.Assert(pbKey.Length == 32);
+			if(pbKey.Length != 32) throw new ArgumentException("Key must be 256 bits wide!");
+
+			Debug.Assert(pbIV != null); if(pbIV == null) throw new ArgumentNullException("pbIV");
+			Debug.Assert(pbIV.Length == 16);
+			if(pbIV.Length != 16) throw new ArgumentException("Initialization vector must be 128 bits wide!");
+
+			if(bEncrypt)
+			{
+				Debug.Assert(stream.CanWrite);
+				if(stream.CanWrite == false) throw new ArgumentException("Stream must be writable!");
+			}
+			else // Decrypt
+			{
+				Debug.Assert(stream.CanRead);
+				if(stream.CanRead == false) throw new ArgumentException("Encrypted stream must be readable!");
+			}
+		}
+
+		private static Stream CreateStream(Stream s, bool bEncrypt, byte[] pbKey, byte[] pbIV)
+		{
+			StandardAesEngine.ValidateArguments(s, bEncrypt, pbKey, pbIV);
+            
+            return new CryptoStream( s, "AES_CBC_PKCS7", bEncrypt, pbKey, pbIV);
+
+        }
+#if false
+            
+			RijndaelManaged r = new RijndaelManaged();
+
+			if(r.BlockSize != 128) // AES block size
+			{
+				Debug.Assert(false);
+				r.BlockSize = 128;
+			}
+
+			byte[] pbLocalIV = new byte[16];
+			Array.Copy(pbIV, pbLocalIV, 16);
+			r.IV = pbLocalIV;
+
+			byte[] pbLocalKey = new byte[32];
+			Array.Copy(pbKey, pbLocalKey, 32);
+			r.KeySize = 256;
+			r.Key = pbLocalKey;
+
+			r.Mode = m_rCipherMode;
+			r.Padding = m_rCipherPadding;
+
+			ICryptoTransform iTransform = (bEncrypt ? r.CreateEncryptor() : r.CreateDecryptor());
+			Debug.Assert(iTransform != null);
+			if(iTransform == null) throw new SecurityException("Unable to create Rijndael transform!");
+
+			return new CryptoStream(s, iTransform, bEncrypt ? CryptoStreamMode.Write :
+				CryptoStreamMode.Read);
+        		}
+#endif
+
+
+        public Stream EncryptStream(Stream sPlainText, byte[] pbKey, byte[] pbIV)
+		{
+			return StandardAesEngine.CreateStream(sPlainText, true, pbKey, pbIV);
+		}
+
+		public Stream DecryptStream(Stream sEncrypted, byte[] pbKey, byte[] pbIV)
+		{
+			return StandardAesEngine.CreateStream(sEncrypted, false, pbKey, pbIV);
+		}
+
+       
+    }
+}