From nobody Fri Dec 12 14:05:56 2025
Delivered-To: importer@patchew.org
Received-SPF: pass (zohomail.com: domain of lists.libvirt.org designates
 8.43.85.245 as permitted sender) client-ip=8.43.85.245;
 envelope-from=devel-bounces@lists.libvirt.org; helo=lists.libvirt.org;
Authentication-Results: mx.zohomail.com;
	dkim=fail;
	spf=pass (zohomail.com: domain of lists.libvirt.org designates 8.43.85.245 as
 permitted sender)  smtp.mailfrom=devel-bounces@lists.libvirt.org;
	dmarc=pass(p=reject dis=none)  header.from=lists.libvirt.org
ARC-Seal: i=1; a=rsa-sha256; t=1764228464; cv=none;
	d=zohomail.com; s=zohoarc;
	b=mbBHu36Dh2aBNBiudZSPr0HIVbkt8TyRXozNy8zrUEEgczQfHZIkrZqcjCB2bD/QNcUdSfx1kj9at16mqO7BD+vPkvbz0Kyt8dM12o/IR4zL0JAytCSHzXgAA1LlcOdZv+onYv5kK4NeDNJ6FIPI7NUgpoe2i9Bn6OSUYVsqeNk=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1764228464;
 h=Content-Type:Content-Transfer-Encoding:Cc:Cc:Date:Date:From:From:In-Reply-To:List-Subscribe:List-Post:List-Owner:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Reply-To:Reply-To:References:Subject:Subject:To:To:Message-Id;
	bh=WEJI074ULOaJU7DOhklWsa5ndSS+aLsFa3J7Z/Fh04U=;
	b=kAZPZXdQCpR21rAF+nEwR0YJG6Ysf7lazeN2M14Vx3RkP1VxSoOBDM8qxekKwzcsKDj3ODyHUWMF1YXk6T3cWbb+l7H/jIpV6+mRWPHkv6GF9U68I3qo/oFNhmCM2gnLzoMy5n7yaQeyFUJ3OYEaMjgQhi14Uf+kh1pFhV5lB6o=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=fail;
	spf=pass (zohomail.com: domain of lists.libvirt.org designates 8.43.85.245 as
 permitted sender)  smtp.mailfrom=devel-bounces@lists.libvirt.org;
	dmarc=pass header.from=<devel@lists.libvirt.org> (p=reject dis=none)
Return-Path: <devel-bounces@lists.libvirt.org>
Received: from lists.libvirt.org (lists.libvirt.org [8.43.85.245]) by
 mx.zohomail.com
	with SMTPS id 1764228464719385.46414676240977;
 Wed, 26 Nov 2025 23:27:44 -0800 (PST)
Received: by lists.libvirt.org (Postfix, from userid 993)
	id D4BB1417F0; Thu, 27 Nov 2025 02:27:43 -0500 (EST)
Received: from [172.19.199.74] (lists.libvirt.org [8.43.85.245])
	by lists.libvirt.org (Postfix) with ESMTP id D580D44B94;
	Thu, 27 Nov 2025 02:26:27 -0500 (EST)
Received: by lists.libvirt.org (Postfix, from userid 993)
	id 17CA1442E2; Thu, 27 Nov 2025 02:22:45 -0500 (EST)
Received: from us-smtp-delivery-124.mimecast.com
 (us-smtp-delivery-124.mimecast.com [170.10.129.124])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (3072 bits) server-digest
 SHA256)
	(No client certificate requested)
	by lists.libvirt.org (Postfix) with ESMTPS id B38E9442E4
	for <devel@lists.libvirt.org>; Thu, 27 Nov 2025 02:22:44 -0500 (EST)
Received: from mail-pl1-f199.google.com (mail-pl1-f199.google.com
 [209.85.214.199]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id
 us-mta-299-9HQ6E4iiMkq3JrA34QOaBQ-1; Thu, 27 Nov 2025 02:22:42 -0500
Received: by mail-pl1-f199.google.com with SMTP id
 d9443c01a7336-295595cd102so9753195ad.3
        for <devel@lists.libvirt.org>; Wed, 26 Nov 2025 23:22:42 -0800 (PST)
Received: from armenon-kvm.armenon-thinkpadp16vgen1.bengluru.csb
 ([49.47.195.90])
        by smtp.gmail.com with ESMTPSA id
 d9443c01a7336-29bce478762sm7801695ad.45.2025.11.26.23.22.39
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 26 Nov 2025 23:22:40 -0800 (PST)
X-Spam-Checker-Version: SpamAssassin 4.0.1 (2024-03-26) on lists.libvirt.org
X-Spam-Level: 
X-Spam-Status: No, score=-5.0 required=5.0 tests=BAYES_00,DKIM_INVALID,
	DKIM_SIGNED,MAILING_LIST_MULTI,RCVD_IN_DNSWL_MED,
	RCVD_IN_VALIDITY_CERTIFIED_BLOCKED,RCVD_IN_VALIDITY_RPBL_BLOCKED,
	RCVD_IN_VALIDITY_SAFE_BLOCKED,SPF_PASS autolearn=unavailable
	autolearn_force=no version=4.0.1
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1764228164;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=WEJI074ULOaJU7DOhklWsa5ndSS+aLsFa3J7Z/Fh04U=;
	b=GqiOpbhgpYHX5XSnVc+KIDTBmH/1kYRGFdn/LSXdjkjKJdxIWAT/ArQbD6eNgtCNR/5cw5
	V894baNtoF3be/zw2x03PdCTiCx0iBYgvtoslUT8gwO63+1kJx47UpQwCsLmjIXRCOTeXJ
	JX22eEZsGh24WrHG/PY//eDY67x+ikU=
X-MC-Unique: 9HQ6E4iiMkq3JrA34QOaBQ-1
X-Mimecast-MFC-AGG-ID: 9HQ6E4iiMkq3JrA34QOaBQ_1764228162
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1764228161; x=1764832961;
        h=content-transfer-encoding:mime-version:references:in-reply-to
         :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from
         :to:cc:subject:date:message-id:reply-to;
        bh=WEJI074ULOaJU7DOhklWsa5ndSS+aLsFa3J7Z/Fh04U=;
        b=fhMevvfizazV6BCx4jAwZOHbPDnhF7kzqDoQozPH3dHj+9lbBvzoi34Qs/gdDe6fEc
         nWrBEr/UNKR27aspASs/L/uQGaw4EdlWIw/DPxuG1U/QwNzBeAAcf5g6i/CtLINL2Nfm
         gwbaTEuE3MALGPaiJkF43RNTy4qs8FsXr0zTMltUW74QHtDXnxjuxl+eT+PQMgA1QEIP
         w0L7Y9pGbAwgkFIhz3IS2nZ0TXepJ1OTP0pipwqk5RbowKb0avzLTa2MEvgTqRnCPPZz
         6xokg6V+R4szoyasloX7xH9lP3ZICcpXYL2DWX2oAVwgYBllTZz0K9Amu+ilWzZ96UIw
         Rxwg==
X-Gm-Message-State: AOJu0YxbnIsGqa81G1d7an2vl0a4KWu77CYHA53DNGiO/3HgqVVJGCVX
	SesAcgy59wG68ZAofVnxHM9PX+TDTT0OiUMmen0hgSP5HG50P9Qe2C6FE7XaJ4dJur/fF4JfEQ5
	qauXT0MmpBEykXYK7bJHqY5nDze22nKojlDS3hxoeSWQCkhbdRD9iNANW9igbRH8E0wCEEIDmnP
	EqrY4Zdq0JEwTMiZNCqpfYwaksCtBMyg2VIsg9oW0hjw==
X-Gm-Gg: ASbGncsLPEkSDufiWToYWplX91Cc1b3tMzzij1hcoEoVdNwGwRhlykHZ4VjzfcKlK90
	0/yAkB/+Nq5CL+25RIQXorVhwazB4NDMK0J6G2jFp6+3HPJMKJ+GVFQ0HqeJE2d6PthFddJSHlx
	TOIVAA2Uqaez+kubfTI8C0w2IbOWXRIXfJ5XQkGXVlXOmIxqEDRe+tMu4LkcqPqbIZU4JGGXh+z
	nFJZGMAgkPW0r92ii6zATMC1W+hSCJMK/C8iry9MhHYqDDOPEbakccwbdFiIGIl+ayaJAOLnm8h
	ah9yHr/e+4qt0fcLdrDqT7nmuT9BOQrQSUwzQ+O79c3lS5DEDudp1rN2okz1nljrDZ2v4jMm1Gm
	YPhij1FYsvpqttng8ztKNVi6D9tYOP0O/6o24yhFuUqwIEVkevZ0otkRe
X-Received: by 2002:a17:903:17cd:b0:271:45c0:9ec8 with SMTP id
 d9443c01a7336-29b6bf35db0mr263248985ad.37.1764228161431;
        Wed, 26 Nov 2025 23:22:41 -0800 (PST)
X-Google-Smtp-Source: 
 AGHT+IHyMhwEA1GFNpEoJrho/fIvFxdnItdh2GgnGtqpDypgNi70l6jhMe5repmiNmCgRSft7EoO9g==
X-Received: by 2002:a17:903:17cd:b0:271:45c0:9ec8 with SMTP id
 d9443c01a7336-29b6bf35db0mr263248775ad.37.1764228160931;
        Wed, 26 Nov 2025 23:22:40 -0800 (PST)
To: devel@lists.libvirt.org
Subject: [RFC v3 1/5] util: Add support for GnuTLS decryption
Date: Thu, 27 Nov 2025 12:52:28 +0530
Message-ID: <20251127072232.38426-2-armenon@redhat.com>
X-Mailer: git-send-email 2.51.1
In-Reply-To: <20251127072232.38426-1-armenon@redhat.com>
References: <20251127072232.38426-1-armenon@redhat.com>
MIME-Version: 1.0
X-Mimecast-Spam-Score: 0
X-Mimecast-MFC-PROC-ID: -DZPidBauQao8Cb1U59Zcjsoi1R8OlQ5w2i-5zhvy08_1764228162
X-Mimecast-Originator: redhat.com
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: FTJI34PB7QQ4OK2M25MWVZAOVWSQ3GRE
X-Message-ID-Hash: FTJI34PB7QQ4OK2M25MWVZAOVWSQ3GRE
X-MailFrom: armenon@redhat.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop;
 banned-address; header-match-devel.lists.libvirt.org-0; emergency;
 member-moderation; nonmember-moderation; administrivia; implicit-dest;
 max-recipients; max-size; news-moderation; no-subject; digests;
 suspicious-header
CC: Arun Menon <armenon@redhat.com>
X-Mailman-Version: 3.3.10
Precedence: list
List-Id: Development discussions about the libvirt library & tools
 <devel.lists.libvirt.org>
Archived-At: 
 <https://lists.libvirt.org/archives/list/devel@lists.libvirt.org/message/FTJI34PB7QQ4OK2M25MWVZAOVWSQ3GRE/>
List-Archive: 
 <https://lists.libvirt.org/archives/list/devel@lists.libvirt.org/>
List-Help: <mailto:devel-request@lists.libvirt.org?subject=help>
List-Owner: <mailto:devel-owner@lists.libvirt.org>
List-Post: <mailto:devel@lists.libvirt.org>
List-Subscribe: <mailto:devel-join@lists.libvirt.org>
List-Unsubscribe: <mailto:devel-leave@lists.libvirt.org>
From: Arun Menon via Devel <devel@lists.libvirt.org>
Reply-To: Arun Menon <armenon@redhat.com>
X-ZohoMail-DKIM: fail (Header signature does not verify)
X-ZM-MESSAGEID: 1764228470886019200
Content-Type: text/plain; charset="utf-8"; x-default="true"

Adds `virCryptoDecryptDataAESgnutls` and `virCryptoDecryptData`
as wrapper functions for GnuTLS decryption.

These functions are the inverse of the existing GnuTLS encryption wrappers.
This commit also includes a corresponding test case to validate data decryp=
tion.

Signed-off-by: Arun Menon <armenon@redhat.com>
Reviewed-by: Peter Krempa <pkrempa@redhat.com>
---
 src/libvirt_private.syms |   1 +
 src/util/vircrypto.c     | 126 ++++++++++++++++++++++++++++++++++++++-
 src/util/vircrypto.h     |   8 +++
 tests/vircryptotest.c    |  65 ++++++++++++++++++++
 4 files changed, 199 insertions(+), 1 deletion(-)

diff --git a/src/libvirt_private.syms b/src/libvirt_private.syms
index 4e57e4a8f6..63a1ae4c70 100644
--- a/src/libvirt_private.syms
+++ b/src/libvirt_private.syms
@@ -2254,6 +2254,7 @@ virConfWriteMem;
=20
=20
 # util/vircrypto.h
+virCryptoDecryptData;
 virCryptoEncryptData;
 virCryptoHashBuf;
 virCryptoHashString;
diff --git a/src/util/vircrypto.c b/src/util/vircrypto.c
index 3ce23264ca..00f723bb75 100644
--- a/src/util/vircrypto.c
+++ b/src/util/vircrypto.c
@@ -98,7 +98,7 @@ virCryptoHashString(virCryptoHash hash,
 }
=20
=20
-/* virCryptoEncryptDataAESgntuls:
+/* virCryptoEncryptDataAESgnutls:
  *
  * Performs the AES gnutls encryption
  *
@@ -233,3 +233,127 @@ virCryptoEncryptData(virCryptoCipher algorithm,
                    _("algorithm=3D%1$d is not supported"), algorithm);
     return -1;
 }
+
+/* virCryptoDecryptDataAESgnutls:
+ *
+ * Performs the AES gnutls decryption
+ *
+ * Same input as virCryptoDecryptData, except the algorithm is replaced
+ * by the specific gnutls algorithm.
+ *
+ * Decrypts the @data buffer using the @deckey and if available the @iv
+ *
+ * Returns 0 on success with the plaintext being filled. It is the
+ * caller's responsibility to clear and free it. Returns -1 on failure
+ * w/ error set.
+ */
+static int
+virCryptoDecryptDataAESgnutls(gnutls_cipher_algorithm_t gnutls_dec_alg,
+                              uint8_t *deckey,
+                              size_t deckeylen,
+                              uint8_t *iv,
+                              size_t ivlen,
+                              uint8_t *data,
+                              size_t datalen,
+                              uint8_t **plaintextret,
+                              size_t *plaintextlenret)
+{
+    int rc;
+    uint8_t padding_length;
+    gnutls_cipher_hd_t handle =3D NULL;
+    gnutls_datum_t dec_key =3D { .data =3D deckey, .size =3D deckeylen };
+    gnutls_datum_t iv_buf =3D { .data =3D iv, .size =3D ivlen };
+    g_autofree uint8_t *plaintext =3D NULL;
+    size_t plaintextlen;
+
+    if ((rc =3D gnutls_cipher_init(&handle, gnutls_dec_alg,
+                                 &dec_key, &iv_buf)) < 0) {
+        virReportError(VIR_ERR_INTERNAL_ERROR,
+                       _("failed to initialize cipher: '%1$s'"),
+                       gnutls_strerror(rc));
+        return -1;
+    }
+
+    plaintext =3D g_memdup2(data, datalen);
+    plaintextlen =3D datalen;
+    if (plaintextlen =3D=3D 0) {
+        virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
+                       _("decrypted data has zero length"));
+        goto error;
+    }
+    rc =3D gnutls_cipher_decrypt(handle, plaintext, plaintextlen);
+    gnutls_cipher_deinit(handle);
+    if (rc < 0) {
+        virReportError(VIR_ERR_INTERNAL_ERROR,
+                       _("failed to decrypt the data: '%1$s'"),
+                       gnutls_strerror(rc));
+        goto error;
+    }
+    /* Before encryption, padding is added to the data.
+     * The last byte indicates the padding length, because in PKCS#7, all
+     * padding bytes are set to the padding length value.
+     */
+    padding_length =3D plaintext[plaintextlen - 1];
+    if (padding_length > plaintextlen) {
+        virReportError(VIR_ERR_INVALID_SECRET, "%s",
+                       _("decrypted data has invalid padding"));
+        goto error;
+    }
+    *plaintextlenret =3D plaintextlen - padding_length;
+    *plaintextret =3D g_steal_pointer(&plaintext);
+    return 0;
+ error:
+    virSecureErase(plaintext, plaintextlen);
+    return -1;
+}
+
+/* virCryptoDecryptData:
+    * @algorithm: algorithm desired for decryption
+    * @deckey: decryption key
+    * @deckeylen: decryption key length
+    * @iv: initialization vector
+    * @ivlen: length of initialization vector
+    * @data: data to decrypt
+    * @datalen: length of data
+    * @plaintext: stream of bytes allocated to store plaintext
+    * @plaintextlen: size of the stream of bytes
+    * Returns 0 on success, -1 on failure with error set
+    */
+int
+virCryptoDecryptData(virCryptoCipher algorithm,
+                     uint8_t *deckey,
+                     size_t deckeylen,
+                     uint8_t *iv,
+                     size_t ivlen,
+                     uint8_t *data,
+                     size_t datalen,
+                     uint8_t **plaintext,
+                     size_t *plaintextlen)
+{
+    switch (algorithm) {
+    case VIR_CRYPTO_CIPHER_AES256CBC:
+        if (deckeylen !=3D 32) {
+            virReportError(VIR_ERR_INVALID_ARG,
+                            _("AES256CBC decryption invalid keylen=3D%1$zu=
"),
+                            deckeylen);
+            return -1;
+        }
+        if (ivlen !=3D 16) {
+            virReportError(VIR_ERR_INVALID_ARG,
+                            _("AES256CBC initialization vector invalid len=
=3D%1$zu"),
+                            ivlen);
+            return -1;
+        }
+        return virCryptoDecryptDataAESgnutls(GNUTLS_CIPHER_AES_256_CBC,
+                                             deckey, deckeylen, iv, ivlen,
+                                             data, datalen,
+                                             plaintext, plaintextlen);
+    case VIR_CRYPTO_CIPHER_NONE:
+    case VIR_CRYPTO_CIPHER_LAST:
+        break;
+    }
+
+    virReportError(VIR_ERR_INVALID_ARG,
+                    _("algorithm=3D%1$d is not supported"), algorithm);
+    return -1;
+}
diff --git a/src/util/vircrypto.h b/src/util/vircrypto.h
index 5f079ac335..2e8557839d 100644
--- a/src/util/vircrypto.h
+++ b/src/util/vircrypto.h
@@ -61,3 +61,11 @@ int virCryptoEncryptData(virCryptoCipher algorithm,
                          uint8_t **ciphertext, size_t *ciphertextlen)
     ATTRIBUTE_NONNULL(2) ATTRIBUTE_NONNULL(6)
     ATTRIBUTE_NONNULL(8) ATTRIBUTE_NONNULL(9) G_GNUC_WARN_UNUSED_RESULT;
+
+int virCryptoDecryptData(virCryptoCipher algorithm,
+                         uint8_t *deckey, size_t deckeylen,
+                         uint8_t *iv, size_t ivlen,
+                         uint8_t *data, size_t datalen,
+                         uint8_t **plaintext, size_t *plaintextlen)
+    ATTRIBUTE_NONNULL(2) ATTRIBUTE_NONNULL(6)
+    ATTRIBUTE_NONNULL(8) ATTRIBUTE_NONNULL(9) G_GNUC_WARN_UNUSED_RESULT;
diff --git a/tests/vircryptotest.c b/tests/vircryptotest.c
index 9ffe70756e..864fa8838d 100644
--- a/tests/vircryptotest.c
+++ b/tests/vircryptotest.c
@@ -62,6 +62,14 @@ struct testCryptoEncryptData {
     size_t ciphertextlen;
 };
=20
+struct testCryptoDecryptData {
+    virCryptoCipher algorithm;
+    uint8_t *input;
+    size_t inputlen;
+    uint8_t *plaintext;
+    size_t plaintextlen;
+};
+
 static int
 testCryptoEncrypt(const void *opaque)
 {
@@ -101,6 +109,44 @@ testCryptoEncrypt(const void *opaque)
     return 0;
 }
=20
+static int
+testCryptoDecrypt(const void *opaque)
+{
+    const struct testCryptoDecryptData *data =3D opaque;
+    g_autofree uint8_t *deckey =3D NULL;
+    size_t deckeylen =3D 32;
+    g_autofree uint8_t *iv =3D NULL;
+    size_t ivlen =3D 16;
+    g_autofree uint8_t *plaintext =3D NULL;
+    size_t plaintextlen =3D 0;
+
+    deckey =3D g_new0(uint8_t, deckeylen);
+    iv =3D g_new0(uint8_t, ivlen);
+
+    if (virRandomBytes(deckey, deckeylen) < 0 ||
+        virRandomBytes(iv, ivlen) < 0) {
+        fprintf(stderr, "Failed to generate random bytes\n");
+        return -1;
+    }
+
+    if (virCryptoDecryptData(data->algorithm, deckey, deckeylen, iv, ivlen,
+                             data->input, data->inputlen,
+                             &plaintext, &plaintextlen) < 0)
+        return -1;
+
+    if (data->plaintextlen !=3D plaintextlen) {
+        fprintf(stderr, "Expected plaintexlen(%zu) doesn't match (%zu)\n",
+                data->plaintextlen, plaintextlen);
+        return -1;
+    }
+
+    if (memcmp(data->plaintext, plaintext, plaintextlen)) {
+        fprintf(stderr, "Expected plaintext doesn't match\n");
+        return -1;
+    }
+
+    return 0;
+}
=20
 static int
 mymain(void)
@@ -155,7 +201,26 @@ mymain(void)
=20
 #undef VIR_CRYPTO_ENCRYPT
=20
+#define VIR_CRYPTO_DECRYPT(a, n, i, il, c, cl) \
+    do { \
+        struct testCryptoDecryptData data =3D { \
+            .algorithm =3D a, \
+            .input =3D i, \
+            .inputlen =3D il, \
+            .plaintext =3D c, \
+            .plaintextlen =3D cl, \
+        }; \
+        if (virTestRun("Decrypt " n, testCryptoDecrypt, &data) < 0) \
+            ret =3D -1; \
+    } while (0)
+
+    VIR_CRYPTO_DECRYPT(VIR_CRYPTO_CIPHER_AES256CBC, "aes256cbc",
+                       expected_ciphertext, 16, secretdata, 7);
+
+#undef VIR_CRYPTO_DECRYPT
+
     return ret =3D=3D 0 ? EXIT_SUCCESS : EXIT_FAILURE;
+
 }
=20
 /* Forces usage of not so random virRandomBytes */
--=20
2.51.1