Archives/lokinet
2
0
Fork 0
mirror of https://github.com/oxen-io/lokinet.git synced 2024-10-31 09:20:21 +00:00
Code Issues Projects Releases Wiki Activity
9edda9f101
lokinet/llarp/crypto/encrypted_frame.cpp

157 lines
3.7 KiB
C++
Raw Normal View History

standardize include format and pragma once All #ifndef guards on headers have been removed, I think, in favor of #pragma once Headers are now included as `#include "filename"` if the included file resides in the same directory as the file including it, or any subdirectory therein. Otherwise they are included as `#include <project/top/dir/relative/path/filename>` The above does not include system/os headers.
2021-03-09 22:24:35 +00:00
#include "encrypted_frame.hpp"
Move lokinet unspecific components to a util/ library
2019-01-10 19:41:51 +00:00
standardize include format and pragma once All #ifndef guards on headers have been removed, I think, in favor of #pragma once Headers are now included as `#include "filename"` if the included file resides in the same directory as the file including it, or any subdirectory therein. Otherwise they are included as `#include <project/top/dir/relative/path/filename>` The above does not include system/os headers.
2021-03-09 22:24:35 +00:00
#include "crypto.hpp"
Replace logging with oxen-logger Replaces custom logging system with spdlog-based oxen logging. This commit mainly replaces the backend logging with the spdlog-based system, but doesn't (yet) convert all the existing LogWarn, etc. to use the new format-based logging. New logging statements will look like: llarp::log::warning(cat, "blah: {}", val); where `cat` should be set up in each .cpp or cluster of .cpp files, as described in the oxen-logging README. As part of spdlog we get fmt, which gives us nice format strings, where are applied generously in this commit. Making types printable now requires two steps: - add a ToString() method - add this specialization: template <> constexpr inline bool llarp::IsToStringFormattable<llarp::Whatever> = true; This will then allow the type to be printed as a "{}" value in a fmt::format string. This is applied to all our printable types here, and all of the `operator<<` are removed. This commit also: - replaces various uses of `operator<<` to ToString() - replaces various uses of std::stringstream with either fmt::format or plain std::string - Rename some to_string and toString() methods to ToString() for consistency (and to work with fmt) - Replace `stringify(...)` and `make_exception` usage with fmt::format (and remove stringify/make_exception from util/str.hpp).
2022-07-16 00:41:14 +00:00
#include <llarp/util/logging.hpp>
standardize include format and pragma once All #ifndef guards on headers have been removed, I think, in favor of #pragma once Headers are now included as `#include "filename"` if the included file resides in the same directory as the file including it, or any subdirectory therein. Otherwise they are included as `#include <project/top/dir/relative/path/filename>` The above does not include system/os headers.
2021-03-09 22:24:35 +00:00
#include <llarp/util/mem.hpp>
more onion routing stuff
2018-06-10 14:05:48 +00:00
namespace llarp
{
encrypt in place
2018-06-11 13:44:49 +00:00
bool
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
EncryptedFrame::DoEncrypt(const SharedSecret& shared, bool noDH)
encrypt in place
2018-06-11 13:44:49 +00:00
{
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
byte_t* hash = data();
Mark AlignedBuffer constructor as explicit
2019-01-02 01:04:06 +00:00
byte_t* noncePtr = hash + SHORTHASHSIZE;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
byte_t* pubkey = noncePtr + TUNNONCESIZE;
byte_t* body = pubkey + PUBKEYSIZE;
encrypt in place
2018-06-11 13:44:49 +00:00
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
auto crypto = CryptoManager::instance();
// if noDH flag, means key exchange has already taken place
// in this case, set pubkey to random noise and choose a
// random nonce here
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (noDH)
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
{
crypto->randbytes(noncePtr, TUNNONCESIZE);
crypto->randbytes(pubkey, PUBKEYSIZE);
}
TunnelNonce nonce(noncePtr);
encrypt in place
2018-06-11 13:44:49 +00:00
llarp_buffer_t buf;
buf.base = body;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
buf.cur = buf.base;
buf.sz = size() - EncryptedFrameOverheadSize;
encrypt in place
2018-06-11 13:44:49 +00:00
// encrypt body
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->xchacha20(buf, shared, nonce))
encrypt in place
2018-06-11 13:44:49 +00:00
{
* refactor log functions * add more stuff for hidden service dht
2018-07-05 15:44:06 +00:00
llarp::LogError("encrypt failed");
encrypt in place
2018-06-11 13:44:49 +00:00
return false;
}
// generate message auth
Mark AlignedBuffer constructor as explicit
2019-01-02 01:04:06 +00:00
buf.base = noncePtr;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
buf.cur = buf.base;
buf.sz = size() - SHORTHASHSIZE;
encrypt in place
2018-06-11 13:44:49 +00:00
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->hmac(hash, buf, shared))
encrypt in place
2018-06-11 13:44:49 +00:00
{
Remove byte* conversion operators from llarp::AlignedBuffer
2019-01-02 01:04:03 +00:00
llarp::LogError("Failed to generate message auth");
encrypt in place
2018-06-11 13:44:49 +00:00
return false;
}
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
encrypt in place
2018-06-11 13:44:49 +00:00
return true;
}
more onion routing stuff
2018-06-10 14:05:48 +00:00
bool
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
EncryptedFrame::EncryptInPlace(const SecretKey& ourSecretKey, const PubKey& otherPubkey)
more onion routing stuff
2018-06-10 14:05:48 +00:00
{
encrypted frames
2018-06-11 13:25:10 +00:00
// format of frame is
// <32 bytes keyed hash of following data>
// <32 bytes nonce>
// <32 bytes pubkey>
// <N bytes encrypted payload>
//
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
byte_t* hash = data();
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
byte_t* noncePtr = hash + SHORTHASHSIZE;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
byte_t* pubkey = noncePtr + TUNNONCESIZE;
encrypted frames
2018-06-11 13:25:10 +00:00
refactor to use AlignedBuffer for public key, shared secret, nonce, secret key etc
2018-06-12 11:57:14 +00:00
SharedSecret shared;
encrypted frames
2018-06-11 13:25:10 +00:00
Port code to use CryptoManager over passing Crypto pointers
2019-05-28 19:45:08 +00:00
auto crypto = CryptoManager::instance();
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
// set our pubkey
memcpy(pubkey, ourSecretKey.toPublic().data(), PUBKEYSIZE);
// randomize nonce
crypto->randbytes(noncePtr, TUNNONCESIZE);
TunnelNonce nonce(noncePtr);
// derive shared key
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->dh_client(shared, otherPubkey, ourSecretKey, nonce))
encrypted frames
2018-06-11 13:25:10 +00:00
{
* refactor log functions * add more stuff for hidden service dht
2018-07-05 15:44:06 +00:00
llarp::LogError("DH failed");
encrypted frames
2018-06-11 13:25:10 +00:00
return false;
}
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
return DoEncrypt(shared, false);
}
bool
EncryptedFrame::DoDecrypt(const SharedSecret& shared)
{
ShortHash hash(data());
byte_t* noncePtr = data() + SHORTHASHSIZE;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
byte_t* body = data() + EncryptedFrameOverheadSize;
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
TunnelNonce nonce(noncePtr);
auto crypto = CryptoManager::instance();
Mark AlignedBuffer constructor as explicit
2019-01-02 01:04:06 +00:00
llarp_buffer_t buf;
buf.base = noncePtr;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
buf.cur = buf.base;
buf.sz = size() - SHORTHASHSIZE;
Mark AlignedBuffer constructor as explicit
2019-01-02 01:04:06 +00:00
ShortHash digest;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->hmac(digest.data(), buf, shared))
encrypted frames
2018-06-11 13:25:10 +00:00
{
* refactor log functions * add more stuff for hidden service dht
2018-07-05 15:44:06 +00:00
llarp::LogError("Digest failed");
encrypted frames
2018-06-11 13:25:10 +00:00
return false;
}
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!std::equal(digest.begin(), digest.end(), hash.begin()))
encrypted frames
2018-06-11 13:25:10 +00:00
{
* refactor log functions * add more stuff for hidden service dht
2018-07-05 15:44:06 +00:00
llarp::LogError("message authentication failed");
encrypted frames
2018-06-11 13:25:10 +00:00
return false;
}
encrypt in place
2018-06-11 13:44:49 +00:00
buf.base = body;
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
buf.cur = body;
buf.sz = size() - EncryptedFrameOverheadSize;
encrypt in place
2018-06-11 13:44:49 +00:00
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->xchacha20(buf, shared, nonce))
encrypted frames
2018-06-11 13:25:10 +00:00
{
* refactor log functions * add more stuff for hidden service dht
2018-07-05 15:44:06 +00:00
llarp::LogError("decrypt failed");
encrypted frames
2018-06-11 13:25:10 +00:00
return false;
}
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
encrypted frames
2018-06-11 13:25:10 +00:00
return true;
more onion routing stuff
2018-06-10 14:05:48 +00:00
}
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
bool
EncryptedFrame::DecryptInPlace(const SecretKey& ourSecretKey)
{
// format of frame is
// <32 bytes keyed hash of following data>
// <32 bytes nonce>
// <32 bytes pubkey>
// <N bytes encrypted payload>
//
byte_t* noncePtr = data() + SHORTHASHSIZE;
TunnelNonce nonce(noncePtr);
PubKey otherPubkey(noncePtr + TUNNONCESIZE);
SharedSecret shared;
auto crypto = CryptoManager::instance();
// use dh_server because we are not the creator of this message
The Great Wall of Blame This commit reflects changes to clang-format rules. Unfortunately, these rule changes create a massive change to the codebase, which causes an apparent rewrite of git history. Git blame's --ignore-rev flag can be used to ignore this commit when attempting to `git blame` some code.
2020-04-07 18:38:56 +00:00
if (!crypto->dh_server(shared, otherPubkey, ourSecretKey, nonce))
Adds Link-Relay Status Messages Success case: - the path endpoint creates and sends a LR_StatusMessage upon successful path creation Failure case: - an intermediate hop creates and sends a LR_StatusMessage upon failure to forward the path to the next hop for any reason Both cases: - transit hops receive LR_StatusMessages and add a frame to them reflecting their "status" with respect to that path - the path creator receives LR_StatusMessages and decrypts/parses the LR_StatusRecord frames from the path hops. If all is good, the Path does as it would when receiving a PathConfirmMessage. If not, the Path marks the new path as failed. LR_StatusMessage is now used/sent in place of PathConfirmMessage
2019-06-04 18:31:17 +00:00
{
llarp::LogError("DH failed");
return false;
}
return DoDecrypt(shared);
}
initial path building stuff (broken)
2018-06-18 22:03:50 +00:00
} // namespace llarp
Reference in New Issue Copy Permalink