Cloak/internal/client/auth.go

package client

import (
	"encoding/binary"
	"github.com/cbeuw/Cloak/internal/ecdh"
	"github.com/cbeuw/Cloak/internal/util"
)

const (
	UNORDERED_FLAG = 0x01 // 0000 0001
)

type authenticationPayload struct {
	randPubKey        [32]byte
	ciphertextWithTag [64]byte
}

// makeAuthenticationPayload generates the ephemeral key pair, calculates the shared secret, and then compose and
// encrypt the authenticationPayload
func makeAuthenticationPayload(authInfo AuthInfo) (ret authenticationPayload, sharedSecret [32]byte) {
	/*
		Authentication data:
		+----------+----------------+---------------------+-------------+--------------+--------+------------+
		|  _UID_   | _Proxy Method_ | _Encryption Method_ | _Timestamp_ | _Session Id_ | _Flag_ | _reserved_ |
		+----------+----------------+---------------------+-------------+--------------+--------+------------+
		| 16 bytes | 12 bytes       | 1 byte              | 8 bytes     | 4 bytes      | 1 byte | 6 bytes    |
		+----------+----------------+---------------------+-------------+--------------+--------+------------+
	*/
	ephPv, ephPub, _ := ecdh.GenerateKey(authInfo.WorldState.Rand)
	copy(ret.randPubKey[:], ecdh.Marshal(ephPub))

	plaintext := make([]byte, 48)
	copy(plaintext, authInfo.UID)
	copy(plaintext[16:28], authInfo.ProxyMethod)
	plaintext[28] = authInfo.EncryptionMethod
	binary.BigEndian.PutUint64(plaintext[29:37], uint64(authInfo.WorldState.Now().Unix()))
	binary.BigEndian.PutUint32(plaintext[37:41], authInfo.SessionId)

	if authInfo.Unordered {
		plaintext[41] |= UNORDERED_FLAG
	}

	copy(sharedSecret[:], ecdh.GenerateSharedSecret(ephPv, authInfo.ServerPubKey))
	ciphertextWithTag, _ := util.AESGCMEncrypt(ret.randPubKey[:12], sharedSecret[:], plaintext)
	copy(ret.ciphertextWithTag[:], ciphertextWithTag[:])
	return
}
Untested client 2018-10-07 17:09:45 +00:00			`package client`

			`import (`
			`"encoding/binary"`
Remove ECDH as an external dependancy and include it as a internal package 2019-01-25 00:24:47 +00:00			`"github.com/cbeuw/Cloak/internal/ecdh"`
			`"github.com/cbeuw/Cloak/internal/util"`
Untested client 2018-10-07 17:09:45 +00:00			`)`

Add unordered mode 2019-08-12 21:43:16 +00:00			`const (`
			`UNORDERED_FLAG = 0x01 // 0000 0001`
			`)`

Refactor authentication data representations 2020-01-24 16:44:29 +00:00			`type authenticationPayload struct {`
			`randPubKey [32]byte`
			`ciphertextWithTag [64]byte`
Refactor client ClientHello composition 2019-08-16 23:16:31 +00:00			`}`

Refactor authentication data representations 2020-01-24 16:44:29 +00:00			`// makeAuthenticationPayload generates the ephemeral key pair, calculates the shared secret, and then compose and`
Refactor makeAuthenticationPayload to allow easier tests 2020-01-25 10:19:45 +00:00			`// encrypt the authenticationPayload`
Export fields for testing 2020-04-10 13:09:48 +00:00			`func makeAuthenticationPayload(authInfo AuthInfo) (ret authenticationPayload, sharedSecret [32]byte) {`
More comments 2019-08-20 21:43:04 +00:00			`/*`
			`Authentication data:`
			`+----------+----------------+---------------------+-------------+--------------+--------+------------+`
			`\| _UID_ \| _Proxy Method_ \| _Encryption Method_ \| _Timestamp_ \| _Session Id_ \| _Flag_ \| _reserved_ \|`
			`+----------+----------------+---------------------+-------------+--------------+--------+------------+`
			`\| 16 bytes \| 12 bytes \| 1 byte \| 8 bytes \| 4 bytes \| 1 byte \| 6 bytes \|`
			`+----------+----------------+---------------------+-------------+--------------+--------+------------+`
			`*/`
Purge impurity 2020-04-09 21:11:12 +00:00			`ephPv, ephPub, _ := ecdh.GenerateKey(authInfo.WorldState.Rand)`
Refactor authentication data representations 2020-01-24 16:44:29 +00:00			`copy(ret.randPubKey[:], ecdh.Marshal(ephPub))`
TLS1.3 2019-08-02 00:01:19 +00:00
			`plaintext := make([]byte, 48)`
Refactor client config 2020-04-06 12:07:16 +00:00			`copy(plaintext, authInfo.UID)`
			`copy(plaintext[16:28], authInfo.ProxyMethod)`
			`plaintext[28] = authInfo.EncryptionMethod`
Purge impurity 2020-04-09 21:11:12 +00:00			`binary.BigEndian.PutUint64(plaintext[29:37], uint64(authInfo.WorldState.Now().Unix()))`
Refactor client config 2020-04-06 12:07:16 +00:00			`binary.BigEndian.PutUint32(plaintext[37:41], authInfo.SessionId)`
TLS1.3 2019-08-02 00:01:19 +00:00
Refactor client config 2020-04-06 12:07:16 +00:00			`if authInfo.Unordered {`
Add unordered mode 2019-08-12 21:43:16 +00:00			`plaintext[41] \|= UNORDERED_FLAG`
			`}`

Make key lengths explicit 2020-04-07 20:15:28 +00:00			`copy(sharedSecret[:], ecdh.GenerateSharedSecret(ephPv, authInfo.ServerPubKey))`
			`ciphertextWithTag, _ := util.AESGCMEncrypt(ret.randPubKey[:12], sharedSecret[:], plaintext)`
Refactor authentication data representations 2020-01-24 16:44:29 +00:00			`copy(ret.ciphertextWithTag[:], ciphertextWithTag[:])`
TLS1.3 2019-08-02 00:01:19 +00:00			`return`
Untested client 2018-10-07 17:09:45 +00:00			`}`