Changeset ce57b1b in nscp

Timestamp:

02/11/08 23:15:02 (5 years ago)

Author:

Michael Medin <michael@…>

Branches:

master, 0.4.0, 0.4.1, 0.4.2, stable

Children:

7a156f4

Parents:

1a35b3f

Message:

2008-02-11 MickeM

+ Added encryption support for NSCA module (about half of the algorithms are avalible,

if someone wants to use one not available let me know, and I will try to add it)

Files:

• AutoBuild.h (modified) (1 diff)
• NSC.dist (modified) (3 diffs)
• NSClient++-2005.sln (modified) (4 diffs)
• NSClient++.cpp (modified) (1 diff)
• changelog (modified) (1 diff)
• include/Socket.h (modified) (1 diff)
• include/utils.cpp (modified) (1 diff)
• include/utils.h (modified) (1 diff)
• modules/CheckExternalScripts/CheckExternalScripts.cpp (modified) (4 diffs)
• modules/NSCAAgent/NSCAAgent-2005.vcproj (modified) (16 diffs)
• modules/NSCAAgent/NSCAThread.cpp (modified) (3 diffs)
• modules/NSCAAgent/NSCAThread.h (modified) (1 diff)
• modules/NSCAAgent/nsca_enrypt.hpp (modified) (7 diffs)

AutoBuild.h

@@ -3 +3 @@
 // change the FALSE to TRUE for autoincrement of build number
 #define INCREMENT_VERSION TRUE
-#define FILEVER        0,3,0,48
-#define PRODUCTVER     0,3,0,48
-#define STRFILEVER     _T("0.3.0.48")
-#define STRPRODUCTVER  _T("0.3.0.48")
-#define STRPRODUCTDATE  _T("2008-02-08")
+#define FILEVER        0,3,0,50
+#define PRODUCTVER     0,3,0,50
+#define STRFILEVER     _T("0.3.0.50")
+#define STRPRODUCTVER  _T("0.3.0.50")
+#define STRPRODUCTDATE  _T("2008-02-11")
 #endif // AUTOBUILD_H

NSC.dist

@@ -130 +130 @@
 
 [External Alias]
-alias_cpu=checkCPU warn=80 crit=90 time=5m time=1m time=30s
-alias_disk=CheckDriveSize MinWarn=10% MinCrit=5% CheckAll FilterType=FIXED
-alias_service=checkServiceState CheckAll
-alias_mem=checkMem MaxWarn=80% MaxCrit=90% ShowAll type=physical
+;alias_cpu=checkCPU warn=80 crit=90 time=5m time=1m time=30s
+;alias_disk=CheckDriveSize MinWarn=10% MinCrit=5% CheckAll FilterType=FIXED
+;alias_service=checkServiceState CheckAll
+;alias_mem=checkMem MaxWarn=80% MaxCrit=90% ShowAll type=physical
 
 
@@ -232 +232 @@
 ; 0 = None  (Do NOT use this option)
 ; 1 = Simple XOR  (No security, just obfuscation, but very fast)
-; (no MCRYPT yet, but soon...)
-;encryption_method=1
+;   2 = DES
+;   3 = 3DES (Triple DES)
+; 4 = CAST-128
+; 6 = xTEA
+; 8 = BLOWFISH
+; 9 = TWOFISH
+; 11 = RC2
+; 14 = RIJNDAEL-128 (AES)
+; 20 = SERPENT
+;encryption_method=14
 ;
 ;# ENCRYPTION PASSWORD
@@ -258 +266 @@
 ;
 [NSCA Commands]
-my_cpu_check=checkCPU warn=80 crit=90 time=20m time=10s time=4
-my_mem_check=checkMem MaxWarn=80% MaxCrit=90% ShowAll type=page
-my_svc_check=checkServiceState CheckAll exclude=wampmysqld exclude=MpfService
+;my_cpu_check=checkCPU warn=80 crit=90 time=20m time=10s time=4
+;my_mem_check=checkMem MaxWarn=80% MaxCrit=90% ShowAll type=page
+;my_svc_check=checkServiceState CheckAll exclude=wampmysqld exclude=MpfService

NSClient++-2005.sln

@@ -3 +3 @@
 Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "NSClient++", "NSClient++-2005.vcproj", "{2286162D-7571-4735-BAC8-4A8D33A4F42D}"
   ProjectSection(ProjectDependencies) = postProject
+    {626EB00E-A4D2-4B02-9BF4-4C655CA2B7E4} = {626EB00E-A4D2-4B02-9BF4-4C655CA2B7E4}
+    {8F1C3E39-D6C6-4414-AAD2-FE03C9A8655F} = {8F1C3E39-D6C6-4414-AAD2-FE03C9A8655F}
+    {2FCAF54B-AAD3-4F59-895A-8F9CEAFDC65D} = {2FCAF54B-AAD3-4F59-895A-8F9CEAFDC65D}
+    {08D6246D-1B4A-47A3-965D-296DCC54A4E8} = {08D6246D-1B4A-47A3-965D-296DCC54A4E8}
+    {62B685D7-3A2E-4F3E-B2B8-B17F20C0217F} = {62B685D7-3A2E-4F3E-B2B8-B17F20C0217F}
+    {2FF60AF6-09AA-49AB-B414-2E8FD01655C6} = {2FF60AF6-09AA-49AB-B414-2E8FD01655C6}
+    {05DE66AC-E55C-43B3-849F-7EC695D8B8D0} = {05DE66AC-E55C-43B3-849F-7EC695D8B8D0}
+    {BA246C01-063A-4548-8957-32D5CC76171B} = {BA246C01-063A-4548-8957-32D5CC76171B}
+    {E6E588AB-EFEF-481C-9AF7-DCDCB95CFF45} = {E6E588AB-EFEF-481C-9AF7-DCDCB95CFF45}
     {BBFF8362-C626-4838-B0A2-F695D638AD24} = {BBFF8362-C626-4838-B0A2-F695D638AD24}
-    {E6E588AB-EFEF-481C-9AF7-DCDCB95CFF45} = {E6E588AB-EFEF-481C-9AF7-DCDCB95CFF45}
-    {BA246C01-063A-4548-8957-32D5CC76171B} = {BA246C01-063A-4548-8957-32D5CC76171B}
-    {05DE66AC-E55C-43B3-849F-7EC695D8B8D0} = {05DE66AC-E55C-43B3-849F-7EC695D8B8D0}
-    {2FF60AF6-09AA-49AB-B414-2E8FD01655C6} = {2FF60AF6-09AA-49AB-B414-2E8FD01655C6}
-    {62B685D7-3A2E-4F3E-B2B8-B17F20C0217F} = {62B685D7-3A2E-4F3E-B2B8-B17F20C0217F}
-    {08D6246D-1B4A-47A3-965D-296DCC54A4E8} = {08D6246D-1B4A-47A3-965D-296DCC54A4E8}
-    {2FCAF54B-AAD3-4F59-895A-8F9CEAFDC65D} = {2FCAF54B-AAD3-4F59-895A-8F9CEAFDC65D}
-    {8F1C3E39-D6C6-4414-AAD2-FE03C9A8655F} = {8F1C3E39-D6C6-4414-AAD2-FE03C9A8655F}
-    {626EB00E-A4D2-4B02-9BF4-4C655CA2B7E4} = {626EB00E-A4D2-4B02-9BF4-4C655CA2B7E4}
   EndProjectSection
 EndProject
@@ -38 +38 @@
 EndProject
 Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "NSCAAgent", "modules\NSCAAgent\NSCAAgent-2005.vcproj", "{6F55C9BF-57F6-4A15-A058-C83A52F539EE}"
+  ProjectSection(ProjectDependencies) = postProject
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A} = {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}
+  EndProjectSection
 EndProject
 Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "LUAScript", "modules\LUAScript\LUAScript-2005.vcproj", "{26B84883-BE52-40E6-9BEE-55AD056D5751}"
@@ -47 +50 @@
 EndProject
 Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "CheckExternalScripts", "modules\CheckExternalScripts\CheckExternalScripts-2005.vcproj", "{0BEEC749-0E3E-4FB2-82DA-AC8D4730A129}"
+EndProject
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "Crypt++", "..\Crypt++\Crypt++.vcproj", "{630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}"
 EndProject
 Global
@@ -680 +685 @@
     {0BEEC749-0E3E-4FB2-82DA-AC8D4730A129}.Release|x64.ActiveCfg = Release|x64
     {0BEEC749-0E3E-4FB2-82DA-AC8D4730A129}.Release|x64.Build.0 = Release|x64
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Any CPU.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Itanium.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Mixed Platforms.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Mixed Platforms.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Win32.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|Win32.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug|x64.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Any CPU.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Itanium.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Mixed Platforms.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Mixed Platforms.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Win32.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|Win32.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Debug-MemCheck|x64.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Any CPU.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Itanium.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Mixed Platforms.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Mixed Platforms.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Win32.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|Win32.Build.0 = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Distribution|x64.ActiveCfg = Debug|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Any CPU.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Itanium.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Mixed Platforms.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Mixed Platforms.Build.0 = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Win32.ActiveCfg = Nightly|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|Win32.Build.0 = Nightly|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Nightly|x64.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Any CPU.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Itanium.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Mixed Platforms.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Mixed Platforms.Build.0 = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Win32.ActiveCfg = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|Win32.Build.0 = Release|Win32
+    {630857C0-6AD8-4CEE-B5F7-CA1DF620CA9A}.Release|x64.ActiveCfg = Release|Win32
   EndGlobalSection
   GlobalSection(SolutionProperties) = preSolution

NSClient++.cpp

@@ -28 +28 @@
 //////////////////////////////////////////////////////////////////////////
 // Startup code
+
 
 /**

changelog

@@ -5 +5 @@
  * Add module for relaying events
  * Add API for rehashing the daemon (or implement it the API is there but does nothing)
+
+2008-02-11 MickeM
+ + Added encryption support for NSCA module (about half of the algorithms are avalible, 
+     if someone wants to use one not available let me know, and I will try to add it)
 
 2008-02-09 MickeM

include/Socket.h

@@ -56 +56 @@
     }
     DataBuffer(const char* buffer, unsigned int length) {
+      buffer_ = new char[length+2];
+      memcpy(buffer_, buffer, length+1);
+      length_ = length;
+    }
+    DataBuffer(const unsigned char* buffer, unsigned int length) {
       buffer_ = new char[length+2];
       memcpy(buffer_, buffer, length+1);

include/utils.cpp

@@ -57 +57 @@
 }
 
+unsigned long calculate_crc32(const unsigned char *buffer, int buffer_size){
+  if (!hascrc32)
+    generate_crc32_table();
+  register unsigned long crc;
+  int this_char;
+  int current_index;
 
+  crc=0xFFFFFFFF;
+
+  for(current_index=0;current_index<buffer_size;current_index++){
+    this_char=(int)buffer[current_index];
+    crc=((crc>>8) & 0x00FFFFFF) ^ crc32_table[(crc ^ this_char) & 0xFF];
+  }
+
+  return (crc ^ 0xFFFFFFFF);
+}
+
+

include/utils.h

@@ -26 +26 @@
 void generate_crc32_table(void);
 unsigned long calculate_crc32(const char *buffer, int buffer_size);
+unsigned long calculate_crc32(const unsigned char *buffer, int buffer_size);
 
 

modules/CheckExternalScripts/CheckExternalScripts.cpp

@@ -124 +124 @@
 
     for (;cit2!=arr.end();cit2++,i++) {
-      if (NSCModuleHelper::getSettingsInt(EXTSCRIPT_SECTION_TITLE, EXTSCRIPT_SETTINGS_ALLOW_NASTY_META, EXTSCRIPT_SETTINGS_ALLOW_NASTY_META_DEFAULT) == 0) {
+      if (isAlias || NSCModuleHelper::getSettingsInt(EXTSCRIPT_SECTION_TITLE, EXTSCRIPT_SETTINGS_ALLOW_NASTY_META, EXTSCRIPT_SETTINGS_ALLOW_NASTY_META_DEFAULT) == 0) {
         if ((*cit2).find_first_of(NASTY_METACHARS) != std::wstring::npos) {
           NSC_LOG_ERROR(_T("Request string contained illegal metachars!"));
@@ -136 +136 @@
     return NSCModuleHelper::InjectSplitAndCommand(cd.command, cd.arguments, ' ', message, perf, true);
   } else {
-    return executeNRPECommand(args, message, perf);
+    return executeNRPECommand(cd.command + _T(" ") + args, message, perf);
     /*
   } else if (cd.type == script_dir) {
@@ -168 +168 @@
   sec.lpSecurityDescriptor = NULL;
 
+  // CreateProcess doesn't work with a const command
+  TCHAR *cmd = new TCHAR[command.length()+1];
+  if (cmd == NULL) {
+    NSC_LOG_ERROR(_T("Failed to allocate memory for command buffer (") + command + _T(")."));
+    return NSCAPI::returnUNKNOWN;
+  }
+  wcsncpy_s(cmd, command.length()+1, command.c_str(), command.length());
+  cmd[command.length()] = 0;
+  std::wstring root = NSCModuleHelper::getBasePath();
+
   // Create Pipes
-  CreatePipe(&hChildInR, &hChildInW, &sec, 0);
-  CreatePipe(&hChildOutR, &hChildOutW, &sec, 0);
+  if (!CreatePipe(&hChildInR, &hChildInW, &sec, 0)) {
+    NSC_LOG_ERROR(_T("Failed to create pipe for (") + command + _T(") return code: ") + error::lookup::last_error());
+    return NSCAPI::returnUNKNOWN;
+  }
+  if (!CreatePipe(&hChildOutR, &hChildOutW, &sec, 0)) {
+    NSC_LOG_ERROR(_T("Failed to create pipe for (") + command + _T(") return code: ") + error::lookup::last_error());
+    return NSCAPI::returnUNKNOWN;
+  }
 
   // Set up members of STARTUPINFO structure. 
@@ -181 +197 @@
   si.hStdError = hChildOutW;
   si.wShowWindow = SW_HIDE;
-
-
-  // CreateProcess doesn't work with a const command
-  TCHAR *cmd = new TCHAR[command.length()+1];
-  wcsncpy_s(cmd, command.length()+1, command.c_str(), command.length());
-  cmd[command.length()] = 0;
-  std::wstring root = NSCModuleHelper::getBasePath();
 
   // Create the child process. 

modules/NSCAAgent/NSCAAgent-2005.vcproj

@@ -69 +69 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="../../Debug/modules/$(ProjectName).dll"
         LinkIncremental="2"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="true"
         ProgramDatabaseFile="$(OutDir)/NSCAAgent.pdb"
         SubSystem="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(OutDir)/NRPEListener.lib"
         TargetMachine="1"
       />
@@ -152 +153 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="2"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="true"
         ProgramDatabaseFile="$(OutDir)/NSCAAgent.pdb"
         SubSystem="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(OutDir)/NRPEListener.lib"
         TargetMachine="17"
       />
@@ -231 +233 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -239 +242 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="1"
       />
@@ -312 +315 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -320 +324 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="17"
       />
@@ -392 +396 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -400 +405 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="1"
       />
@@ -473 +478 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -481 +487 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="17"
       />
@@ -553 +559 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -561 +568 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary=""
         TargetMachine="1"
       />
@@ -634 +641 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="1"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="false"
@@ -642 +650 @@
         OptimizeReferences="2"
         EnableCOMDATFolding="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="17"
       />
@@ -717 +725 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="2"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="true"
         ProgramDatabaseFile="$(OutDir)/NSCAAgent.pdb"
         SubSystem="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="1"
       />
@@ -800 +809 @@
       <Tool
         Name="VCLinkerTool"
-        AdditionalDependencies="ws2_32.lib"
+        AdditionalDependencies="ws2_32.lib Crypt++.lib"
         OutputFile="$(OutDir)\$(ProjectName).dll"
         LinkIncremental="2"
+        AdditionalLibraryDirectories="$(SolutionDir)lib\$(ConfigurationName)\$(PlatformName)"
         ModuleDefinitionFile="NSCAAgent.def"
         GenerateDebugInformation="true"
         ProgramDatabaseFile="$(OutDir)/NSCAAgent.pdb"
         SubSystem="2"
-        ImportLibrary="$(OutDir)/NSCAAgent.lib"
+        ImportLibrary="$(TargetDir)$(TargetName).lib"
         TargetMachine="17"
       />

modules/NSCAAgent/NSCAThread.cpp

@@ -33 +33 @@
     addCommand(*cit);
   }
-  //std::string s = NSCModuleHelper::getSettingsString(C_SYSTEM_SECTION_TITLE, C_SYSTEM_CPU_BUFFER_TIME, C_SYSTEM_CPU_BUFFER_TIME_DEFAULT);
-  //unsigned int i = strEx::stoui_as_time(s, checkIntervall_*100);
 }
 
@@ -143 +141 @@
     NSCAPacket::init_packet_struct *packet_in = (NSCAPacket::init_packet_struct*) inc.getBuffer();
     try {
-      crypt_inst.encrypt_init(password_.c_str(),encryption_method_,packet_in->iv);
-    } catch (nsca_encrypt::exception &e) {
+      crypt_inst.encrypt_init(password_.c_str(),encryption_method_,reinterpret_cast<unsigned char*>(packet_in->iv));
+    } catch (nsca_encrypt::encryption_exception &e) {
       NSC_LOG_ERROR_STD(_T("<<< Failed to initalize encryption header: ") + e.getMessage());
       return;
@@ -154 +152 @@
     try {
       for (std::list<Command::Result>::const_iterator cit = results.begin(); cit != results.end(); ++cit) {
-        //NSC_DEBUG_MSG_STD(_T("Sending : ") + (*cit).toString());
         socket.send((*cit).getBuffer(crypt_inst));
       }
-    } catch (nsca_encrypt::exception &e) {
+    } catch (nsca_encrypt::encryption_exception &e) {
       NSC_LOG_ERROR_STD(_T("<<< Failed to encrypt packet: ") + e.getMessage());
       return;

modules/NSCAAgent/NSCAThread.h

@@ -159 +159 @@
       std::string h = strEx::wstring_to_string(host);
 
-      NSCAPacket::data_packet data;
-      data.packet_version=static_cast<NSCAPacket::int16_t>(htons(NSCA_PACKET_VERSION_3));
-      data.timestamp=static_cast<NSCAPacket::u_int32_t>(htonl(time));
-      data.return_code = code;
-      data.crc32_value=static_cast<NSCAPacket::u_int32_t>(0L);
-
-      strncpy_s(data.host_name, NSCA_MAX_HOSTNAME_LENGTH, h.c_str(), h.length());
-      strncpy_s(data.svc_description, NSCA_MAX_DESCRIPTION_LENGTH, s.c_str(), s.length());
-      strncpy_s(data.plugin_output, NSCA_MAX_PLUGINOUTPUT_LENGTH, r.c_str(), r.length());
-
-      unsigned int calculated_crc32=calculate_crc32(reinterpret_cast<char*>(&data),sizeof(data));
-      data.crc32_value=static_cast<NSCAPacket::u_int32_t>(htonl(calculated_crc32));
-      char * buffer = reinterpret_cast<char*>(&data);
-      crypt_inst.encrypt_buffer(buffer, sizeof(data));
-      return simpleSocket::DataBuffer(buffer,sizeof(data));
+      unsigned int buffer_len = sizeof(NSCAPacket::data_packet);
+      unsigned char* buffer = crypt_inst.get_rand_buffer(buffer_len);
+      NSCAPacket::data_packet *data = reinterpret_cast<NSCAPacket::data_packet*>(buffer);
+      data->packet_version=static_cast<NSCAPacket::int16_t>(htons(NSCA_PACKET_VERSION_3));
+      data->timestamp=static_cast<NSCAPacket::u_int32_t>(htonl(time));
+      data->return_code = code;
+      data->crc32_value=static_cast<NSCAPacket::u_int32_t>(0L);
+
+      strncpy_s(data->host_name, NSCA_MAX_HOSTNAME_LENGTH, h.c_str(), h.length());
+      strncpy_s(data->svc_description, NSCA_MAX_DESCRIPTION_LENGTH, s.c_str(), s.length());
+      strncpy_s(data->plugin_output, NSCA_MAX_PLUGINOUTPUT_LENGTH, r.c_str(), r.length());
+
+      unsigned int calculated_crc32=calculate_crc32(buffer,buffer_len);
+      data->crc32_value=static_cast<NSCAPacket::u_int32_t>(htonl(calculated_crc32));
+      crypt_inst.encrypt_buffer(buffer, buffer_len);
+      simpleSocket::DataBuffer ret(buffer,buffer_len);
+      crypt_inst.destroy_random_buffer(buffer);
+      return ret;
     }
 

modules/NSCAAgent/nsca_enrypt.hpp

@@ +1 @@
+#define HAVE_LIBCRYPTOPP
+
+#ifdef HAVE_LIBCRYPTOPP
+#include <crypto++/cryptlib.h>
+#include <crypto++/modes.h>
+#include <crypto++/des.h>
+#include <crypto++/aes.h>
+#include <crypto++/cast.h>
+#include <crypto++/tea.h>
+#include <crypto++/3way.h>
+#include <crypto++/blowfish.h>
+#include <crypto++/twofish.h>
+#include <crypto++/rc2.h>
+#include <crypto++/arc4.h>
+#include <crypto++/serpent.h>
+#include <crypto++/gost.h>
+#include <crypto++/filters.h>
+#include <crypto++/osrng.h>
+#endif
 
 #define TRANSMITTED_IV_SIZE     128     /* size of IV to transmit - must be as big as largest IV needed for any crypto algorithm */
@@ -7 +26 @@
 #define ENCRYPT_XOR             1       /* not really encrypted, just obfuscated */
 
-#ifdef HAVE_LIBMCRYPT
+#ifdef HAVE_LIBCRYPTOPP
 #define ENCRYPT_DES             2       /* DES */
 #define ENCRYPT_3DES            3       /* 3DES or Triple DES */
@@ -37 +56 @@
 
 class nsca_encrypt {
+public:
+  class encryption_exception {
+    std::wstring msg_;
+  public:
+    encryption_exception() {}
+    encryption_exception(std::wstring msg) : msg_(msg) {}
+    std::wstring getMessage() const { return msg_; }
+
+  };
+  class any_encryption {
+  public:
+    virtual void init(std::string password, unsigned char *transmitted_iv, int iv_size) = 0;
+    virtual void encrypt(unsigned char *buffer, int buffer_size) = 0;
+    virtual void decrypt(unsigned char *buffer, int buffer_size) = 0;
+  };
+  template <class TMethod>
+  class cryptopp_encryption : public any_encryption {
+  private:
+    typedef CryptoPP::CFB_Mode_ExternalCipher::Encryption TEncryption;
+    typedef typename TMethod::Encryption TCipher;
+    TEncryption crypto_;
+    TCipher cipher_;
+    int keysize_;
+  public:
+    cryptopp_encryption() : keysize_(TMethod::DEFAULT_KEYLENGTH) {}
+    cryptopp_encryption(int keysize) : keysize_(keysize) {}
+    int get_keySize() {
+      return keysize_;
+    }
+    int get_blockSize() {
+      return TMethod::BLOCKSIZE;
+    }
+
+    void init(std::string password, unsigned char *transmitted_iv, int iv_size) {
+      /* generate an encryption/description key using the password */
+      int keysize=get_keySize();
+      std::cout << "keysize: " << keysize << std::endl;
+
+      unsigned char *key = new unsigned char[keysize+1];
+      if (key == NULL){
+        throw encryption_exception(_T("Could not allocate memory for encryption/decryption key"));
+      }
+      ZeroMemory(key,keysize*sizeof(unsigned char));
+      strncpy(reinterpret_cast<char*>(key),password.c_str(),min(keysize,password.length()));
+
+
+      /* determine size of IV buffer for this algorithm */
+      int blocksize = get_blockSize();
+      if(blocksize>iv_size){
+        throw encryption_exception(_T("IV size for crypto algorithm exceeds limits"));
+      }
+
+      /* allocate memory for IV buffer */
+      unsigned char *iv = new unsigned char[blocksize+1];
+      if (iv == NULL){
+        throw encryption_exception(_T("Could not allocate memory for IV buffer"));
+      }
+
+      /* fill IV buffer with first bytes of IV that is going to be used to crypt (determined by server) */
+      memcpy(iv, transmitted_iv, sizeof(unsigned char)*blocksize);
+
+      try {
+        cipher_.SetKey(key, keysize);
+        crypto_.SetCipherWithIV(cipher_, iv, 1);
+      } catch (...) {
+        throw encryption_exception(_T("Unknown exception when trying to setup crypto"));
+      }
+      delete [] iv;
+      delete [] key;
+    }
+    void encrypt(unsigned char *buffer, int buffer_size) {
+      /* encrypt each byte of buffer, one byte at a time (CFB mode) */
+      try {
+        for(int x=0;x<buffer_size;x++)
+          crypto_.ProcessData(&buffer[x], &buffer[x], 1);
+      } catch (...) {
+        throw encryption_exception(_T("Unknown exception when trying to setup crypto"));
+      }
+    }
+    void decrypt(unsigned char *buffer, int buffer_size) {
+      throw encryption_exception(_T("Decryption not supported"));
+    }
+
+  };
+  class no_encryption : public any_encryption {
+  public:
+    static int get_keySize() {
+      return 0;
+    }
+    static int get_blockSize() {
+      return 1;
+    }
+    void init(std::string password, unsigned char *transmitted_iv, int iv_size) {}
+    void encrypt(unsigned char *buffer, int buffer_size) {}
+    void decrypt(unsigned char *buffer, int buffer_size) {}
+  };
+  class xor_encryption : public any_encryption {
+  private:
+    int password_size_;
+    int iv_size_;
+    unsigned char* transmitted_iv_;
+    unsigned char* password_;
+  public:
+    xor_encryption() : transmitted_iv_(NULL), password_(NULL) {}
+    ~xor_encryption() {
+      delete [] password_;
+      delete [] transmitted_iv_;
+    }
+    static int get_keySize() {
+      return 0;
+    }
+    static int get_blockSize() {
+      return 1;
+    }
+    void init(std::string password, unsigned char *transmitted_iv, int iv_size) {
+      iv_size_ = iv_size;
+      delete [] transmitted_iv_;
+      transmitted_iv_ = new unsigned char[iv_size_+1];
+      if (transmitted_iv_ == NULL)
+        throw encryption_exception(_T("Failed to allocate memory for iv"));
+      memcpy(transmitted_iv_, transmitted_iv, sizeof(unsigned char)*iv_size_);
+
+      password_size_ = password.length();
+      delete [] password_;
+      password_ = new unsigned char[password_size_+1];
+      if (password_ == NULL)
+        throw encryption_exception(_T("Failed to allocate memory for password"));
+      memcpy(password_, password.c_str(), sizeof(unsigned char)*password_size_);
+
+    }
+    void encrypt(unsigned char *buffer, int buffer_size) {
+      /* rotate over IV we received from the server... */
+      for (int y=0,x=0;y<buffer_size;y++,x++) {
+        /* keep rotating over IV */
+        if (x >= iv_size_)
+          x = 0;
+        buffer[y] ^= transmitted_iv_[x];
+      }
+
+      /* rotate over password... */
+      for(int y=0,x=0; y < buffer_size; y++,x++) {
+        /* keep rotating over password */
+        if (x >= password_size_)
+          x = 0;
+        buffer[y] ^= password_[x];
+      }
+      return;
+    }
+    void decrypt(unsigned char *buffer, int buffer_size) {
+      throw encryption_exception(_T("Decryption not supported"));
+    }
+  };
+
 private:
-  char transmitted_iv_[TRANSMITTED_IV_SIZE];
-  bool isInialized_;
-  std::string password_;
-  int encryption_method_;
-#ifdef HAVE_LIBMCRYPT
-  MCRYPT td_;
-  char *key_;
-  char *IV_;
-  char block_buffer_;
-  int blocksize_;
-  int keysize_;
-  std::string mcrypt_algorithm_;
-  std::string mcrypt_mode_;
-#endif
+  any_encryption *core_;
 public:
-  class exception {
-    std::wstring error_;
-  public:
-    exception(std::wstring error) : error_(error) {}
-    std::wstring getMessage() const { return error_; }
-
-  };
-
-  nsca_encrypt() : isInialized_(false)
-#ifdef HAVE_LIBMCRYPT
-    , key_(NULL), IV_(NULL) 
-#endif
-  {}
+
+  nsca_encrypt() : core_(NULL) {}
   ~nsca_encrypt() {
-#ifdef HAVE_LIBMCRYPT
-    /* mcrypt cleanup */
-    if(encryption_method!=ENCRYPT_NONE && encryption_method!=ENCRYPT_XOR){
-      mcrypt_generic_end(td);
-      delete [] key;
-      key=NULL;
-      delete [] IV;
-      IV=NULL;
-    }
-#endif
+    delete core_;
   }
 
@@ -84 +223 @@
       case ENCRYPT_NONE:
       case ENCRYPT_XOR:
-#ifdef HAVE_LIBMCRYPT
+#ifdef HAVE_LIBCRYPTOPP
       case ENCRYPT_DES:
       case ENCRYPT_3DES:
       case ENCRYPT_CAST128:
-      case ENCRYPT_CAST256:
       case ENCRYPT_XTEA:
-      case ENCRYPT_3WAY:
       case ENCRYPT_BLOWFISH:
       case ENCRYPT_TWOFISH:
+      case ENCRYPT_RC2:
+      case ENCRYPT_RIJNDAEL128:
+      case ENCRYPT_SERPENT:
+      case ENCRYPT_GOST:
+#endif
+        return true;
+
+// UNdefined
+      case ENCRYPT_3WAY:
+      case ENCRYPT_ARCFOUR:
+      case ENCRYPT_CAST256:
       case ENCRYPT_LOKI97:
-      case ENCRYPT_RC2:
-      case ENCRYPT_ARCFOUR:
-      case ENCRYPT_RIJNDAEL128:
+      case ENCRYPT_WAKE:
+      case ENCRYPT_ENIGMA:
       case ENCRYPT_RIJNDAEL192:
       case ENCRYPT_RIJNDAEL256:
-      case ENCRYPT_WAKE:
-      case ENCRYPT_SERPENT:
-      case ENCRYPT_ENIGMA:
-      case ENCRYPT_GOST:
       case ENCRYPT_SAFER64:
       case ENCRYPT_SAFER128:
       case ENCRYPT_SAFERPLUS:
-#endif
-        return true;
       default:
         return false;
@@ -113 +254 @@
   }
 
-  static void generate_transmitted_iv(char *transmitted_iv){
+
+  static any_encryption* get_encryption_core(int encryption_method) {
+    switch(encryption_method) {
+  case ENCRYPT_NONE:
+    return new no_encryption();
+  case ENCRYPT_XOR:
+    return new xor_encryption();
+#ifdef HAVE_LIBCRYPTOPP
+  case ENCRYPT_DES:
+    return new cryptopp_encryption<CryptoPP::DES>();
+  case ENCRYPT_3DES:
+    return new cryptopp_encryption<CryptoPP::DES_EDE3>();
+  case ENCRYPT_CAST128:
+    return new cryptopp_encryption<CryptoPP::CAST128>();
+  case ENCRYPT_XTEA:
+    return new cryptopp_encryption<CryptoPP::XTEA>();
+  case ENCRYPT_3WAY:
+    return new cryptopp_encryption<CryptoPP::ThreeWay>();
+  case ENCRYPT_BLOWFISH:
+    return new cryptopp_encryption<CryptoPP::Blowfish>(56);
+  case ENCRYPT_TWOFISH:
+    return new cryptopp_encryption<CryptoPP::Twofish>(32);
+  case ENCRYPT_RC2:
+    return new cryptopp_encryption<CryptoPP::RC2>(128);
+  case ENCRYPT_RIJNDAEL128:
+    return new cryptopp_encryption<CryptoPP::AES>(32);
+  case ENCRYPT_SERPENT:
+    return new cryptopp_encryption<CryptoPP::Serpent>(32);
+  case ENCRYPT_GOST:
+    return new cryptopp_encryption<CryptoPP::GOST>();
+#endif
+  default:
+    return NULL;
+    }
+  }
+  static void generate_transmitted_iv(unsigned char *transmitted_iv){
     int x;
     int seed=0;
@@ -121 +297 @@
     /*********************************************************/
 
-    /* else fallback to using the current time as the seed */
+    /* else fall back to using the current time as the seed */
     seed=(int)time(NULL);
 
@@ -132 +308 @@
   }
 
-
-
   /* initializes encryption routines */
-  void encrypt_init(std::string password, int encryption_method, char *received_iv){
-#ifdef HAVE_LIBMCRYPT
-    int i;
-    int iv_size;
-#endif
-    if (isInialized_)
-      throw exception(_T("already iniatilized!"));
-    encryption_method_ = encryption_method;
-    password_ = password;
-    isInialized_ = true;
+  void encrypt_init(std::string password, int encryption_method, unsigned char *received_iv){
+    delete core_;
+    core_ = get_encryption_core(encryption_method);
+    if (core_ == NULL)
+      throw encryption_exception(_T("Failed to get encryption core!"));
 
     /* server generates IV used for encryption */
-    if(received_iv==NULL)
-      generate_transmitted_iv(transmitted_iv_);
-
-    /* client receives IV from server */
-    else
-      memcpy(transmitted_iv_,received_iv,TRANSMITTED_IV_SIZE);
-
-#ifdef HAVE_LIBMCRYPT
-    blocksize=1;                        /* block size = 1 byte w/ CFB mode */
-    keysize=7;                          /* default to 56 bit key length */
-    mcrypt_mode="cfb";                  /* CFB = 8-bit cipher-feedback mode */
-    mcrypt_algorithm="unknown";
-#endif
-
-
-
-    /* get the name of the mcrypt encryption algorithm to use */
-    switch(encryption_method){
-    /* no encryption */
-    case ENCRYPT_NONE:
-      return;
-      /* XOR or no encryption */
-    case ENCRYPT_XOR:
-      return;
-#ifdef HAVE_LIBMCRYPT
-    case ENCRYPT_DES:
-      mcrypt_algorithm=MCRYPT_DES;
-      break;
-    case ENCRYPT_3DES:
-      mcrypt_algorithm=MCRYPT_3DES;
-      break;
-    case ENCRYPT_CAST128:
-      mcrypt_algorithm=MCRYPT_CAST_128;
-      break;
-    case ENCRYPT_CAST256:
-      mcrypt_algorithm=MCRYPT_CAST_256;
-      break;
-    case ENCRYPT_XTEA:
-      mcrypt_algorithm=MCRYPT_XTEA;
-      break;
-    case ENCRYPT_3WAY:
-      mcrypt_algorithm=MCRYPT_3WAY;
-      break;
-    case ENCRYPT_BLOWFISH:
-      mcrypt_algorithm=MCRYPT_BLOWFISH;
-      break;
-    case ENCRYPT_TWOFISH:
-      mcrypt_algorithm=MCRYPT_TWOFISH;
-      break;
-    case ENCRYPT_LOKI97:
-      mcrypt_algorithm=MCRYPT_LOKI97;
-      break;
-    case ENCRYPT_RC2:
-      mcrypt_algorithm=MCRYPT_RC2;
-      break;
-    case ENCRYPT_ARCFOUR:
-      mcrypt_algorithm=MCRYPT_ARCFOUR;
-      break;
-    case ENCRYPT_RIJNDAEL128:
-      mcrypt_algorithm=MCRYPT_RIJNDAEL_128;
-      break;
-    case ENCRYPT_RIJNDAEL192:
-      mcrypt_algorithm=MCRYPT_RIJNDAEL_192;
-      break;
-    case ENCRYPT_RIJNDAEL256:
-      mcrypt_algorithm=MCRYPT_RIJNDAEL_256;
-      break;
-    case ENCRYPT_WAKE:
-      mcrypt_algorithm=MCRYPT_WAKE;
-      break;
-    case ENCRYPT_SERPENT:
-      mcrypt_algorithm=MCRYPT_SERPENT;
-      break;
-    case ENCRYPT_ENIGMA:
-      mcrypt_algorithm=MCRYPT_ENIGMA;
-      break;
-    case ENCRYPT_GOST:
-      mcrypt_algorithm=MCRYPT_GOST;
-      break;
-    case ENCRYPT_SAFER64:
-      mcrypt_algorithm=MCRYPT_SAFER_SK64;
-      break;
-    case ENCRYPT_SAFER128:
-      mcrypt_algorithm=MCRYPT_SAFER_SK128;
-      break;
-    case ENCRYPT_SAFERPLUS:
-      mcrypt_algorithm=MCRYPT_SAFERPLUS;
-      break;
-#endif
-    default:
-      throw exception(_T("Invalid encryption algorithm!"));
-    }
-
-#ifdef HAVE_LIBMCRYPT
-    /* open encryption module */
-    if((td=mcrypt_module_open(mcrypt_algorithm,NULL,mcrypt_mode,NULL))==MCRYPT_FAILED){
-      throw exception(_T("Could not open mcrypt algorithm '") + mcrypt_algorithm + _T("' with mode '") + mcrypt_mode + _T("'"));
-    }
-
-    /* determine size of IV buffer for this algorithm */
-    iv_size=mcrypt_enc_get_iv_size(td);
-    if(iv_size>TRANSMITTED_IV_SIZE){
-      throw exception(_T("IV size for crypto algorithm exceeds limits"));
-    }
-
-    /* allocate memory for IV buffer */
-    if((IV=new char[iv_size])==NULL){
-      throw exception(_T("Could not allocate memory for IV buffer"));
-    }
-
-    /* fill IV buffer with first bytes of IV that is going to be used to crypt (determined by server) */
-    for(i=0;i<iv_size;i++)
-      IV[i]=transmitted_iv[i];
-
-    /* get maximum key size for this algorithm */
-    keysize=mcrypt_enc_get_key_size(td);
-
-    /* generate an encryption/decription key using the password */
-    if((key=new char[keysize])==NULL){
-      throw exception(_T("Could not allocate memory for encryption/decryption key"));
-      return ERROR;
-    }
-    ZeroMemory(key,keysize);
-
-    if(keysize<password.length())
-      strncpy(key,password.c_str(),keysize);
-    else
-      strncpy(key,password.c_str(),password.length());
-
-    /* initialize encryption buffers */
-    mcrypt_generic_init(td,key,keysize,IV);
-#endif
+    if (received_iv==NULL) {
+      unsigned char generated_iv[TRANSMITTED_IV_SIZE];
+      generate_transmitted_iv(generated_iv);
+      core_->init(password, generated_iv, TRANSMITTED_IV_SIZE);
+    } else  /* client receives IV from server */
+      core_->init(password, received_iv, TRANSMITTED_IV_SIZE);
   }
 
   /* encrypt a buffer */
-  void encrypt_buffer(char *buffer,int buffer_size){
-    int x;
-    int y;
-    int password_length;
-
-    /* no crypt instance */
-    if (!isInialized_)
-      throw new exception(_T("Not initialized!"));
-
-    /* no encryption */
-    if(encryption_method_==ENCRYPT_NONE)
-      return;
-
-    /* simple XOR "encryption" - not meant for any real security, just obfuscates data, but its fast... */
-    else if(encryption_method_==ENCRYPT_XOR){
-
-      /* rotate over IV we received from the server... */
-      for(y=0,x=0;y<buffer_size;y++,x++){
-
-        /* keep rotating over IV */
-        if(x>=TRANSMITTED_IV_SIZE)
-          x=0;
-
-        buffer[y]^=transmitted_iv_[x];
-      }
-
-      /* rotate over password... */
-      password_length=password_.length();
-      for(y=0,x=0;y<buffer_size;y++,x++){
-        /* keep rotating over password */
-        if(x>=password_length)
-          x=0;
-        buffer[y]^=password_[x];
-      }
-      return;
-    }
-
-#ifdef HAVE_LIBMCRYPT
-    /* use mcrypt routines */
-    else{
-      /* encrypt each byte of buffer, one byte at a time (CFB mode) */
-      for(x=0;x<buffer_size;x++)
-        mcrypt_generic(td,&buffer[x],1);
-    }
-#endif
-    return;
+  void encrypt_buffer(unsigned char *buffer,int buffer_size) {
+    if (core_ == NULL)
+      throw encryption_exception(_T("No encryption core!"));
+    core_->encrypt(buffer, buffer_size);
+  }
+
+  unsigned char* get_rand_buffer(int length) {
+    CryptoPP::AutoSeededRandomPool rng;
+    unsigned char * buffer = new unsigned char[length+1];
+    rng.GenerateBlock(buffer, length);
+    return buffer;
+  }
+  void destroy_random_buffer(unsigned char* buffer) {
+    delete [] buffer;
   }