lokinet/llarp/crypto/encrypted_frame.cpp

#include <crypto/encrypted_frame.hpp>

#include <crypto/crypto.hpp>
#include <util/logger.hpp>
#include <util/mem.hpp>

namespace llarp
{
  bool
  EncryptedFrame::EncryptInPlace(const SecretKey& ourSecretKey,
                                 const PubKey& otherPubkey)
  {
    // format of frame is
    // <32 bytes keyed hash of following data>
    // <32 bytes nonce>
    // <32 bytes pubkey>
    // <N bytes encrypted payload>
    //
    byte_t* hash     = data();
    byte_t* noncePtr = hash + SHORTHASHSIZE;
    byte_t* pubkey   = noncePtr + TUNNONCESIZE;
    byte_t* body     = pubkey + PUBKEYSIZE;

    SharedSecret shared;

    llarp_buffer_t buf;
    buf.base = body;
    buf.cur  = buf.base;
    buf.sz   = size() - EncryptedFrameOverheadSize;

    auto crypto = CryptoManager::instance();

    // set our pubkey
    memcpy(pubkey, ourSecretKey.toPublic().data(), PUBKEYSIZE);
    // randomize nonce
    crypto->randbytes(noncePtr, TUNNONCESIZE);
    TunnelNonce nonce(noncePtr);

    // derive shared key
    if(!crypto->dh_client(shared, otherPubkey, ourSecretKey, nonce))
    {
      llarp::LogError("DH failed");
      return false;
    }

    // encrypt body
    if(!crypto->xchacha20(buf, shared, nonce))
    {
      llarp::LogError("encrypt failed");
      return false;
    }

    // generate message auth
    buf.base = noncePtr;
    buf.cur  = buf.base;
    buf.sz   = size() - SHORTHASHSIZE;

    if(!crypto->hmac(hash, buf, shared))
    {
      llarp::LogError("Failed to generate message auth");
      return false;
    }
    return true;
  }

  bool
  EncryptedFrame::DecryptInPlace(const SecretKey& ourSecretKey)
  {
    // format of frame is
    // <32 bytes keyed hash of following data>
    // <32 bytes nonce>
    // <32 bytes pubkey>
    // <N bytes encrypted payload>
    //
    ShortHash hash(data());
    byte_t* noncePtr = data() + SHORTHASHSIZE;
    byte_t* body     = data() + EncryptedFrameOverheadSize;
    TunnelNonce nonce(noncePtr);
    PubKey otherPubkey(noncePtr + TUNNONCESIZE);

    SharedSecret shared;

    auto crypto = CryptoManager::instance();

    // use dh_server because we are not the creator of this message
    if(!crypto->dh_server(shared, otherPubkey, ourSecretKey, nonce))
    {
      llarp::LogError("DH failed");
      return false;
    }

    llarp_buffer_t buf;
    buf.base = noncePtr;
    buf.cur  = buf.base;
    buf.sz   = size() - SHORTHASHSIZE;

    ShortHash digest;
    if(!crypto->hmac(digest.data(), buf, shared))
    {
      llarp::LogError("Digest failed");
      return false;
    }

    if(!std::equal(digest.begin(), digest.end(), hash.begin()))
    {
      llarp::LogError("message authentication failed");
      return false;
    }

    buf.base = body;
    buf.cur  = body;
    buf.sz   = size() - EncryptedFrameOverheadSize;

    if(!crypto->xchacha20(buf, shared, nonce))
    {
      llarp::LogError("decrypt failed");
      return false;
    }
    return true;
  }
}  // namespace llarp
More refactoring to continue to make dependency graph acylic 2019-01-14 21:46:07 +00:00			`#include <crypto/encrypted_frame.hpp>`
Move lokinet unspecific components to a util/ library 2019-01-10 19:41:51 +00:00
Move crypto code to a subdirectory 2019-01-13 14:00:50 +00:00			`#include <crypto/crypto.hpp>`
Move lokinet unspecific components to a util/ library 2019-01-10 19:41:51 +00:00			`#include <util/logger.hpp>`
			`#include <util/mem.hpp>`
more onion routing stuff 2018-06-10 14:05:48 +00:00
			`namespace llarp`
			`{`
encrypt in place 2018-06-11 13:44:49 +00:00			`bool`
Remove const byte* conversion operators from llarp::AlignedBuffer 2019-01-02 01:04:04 +00:00			`EncryptedFrame::EncryptInPlace(const SecretKey& ourSecretKey,`
Port code to use CryptoManager over passing Crypto pointers 2019-05-28 19:45:08 +00:00			`const PubKey& otherPubkey)`
encrypt in place 2018-06-11 13:44:49 +00:00			`{`
			`// format of frame is`
			`// <32 bytes keyed hash of following data>`
			`// <32 bytes nonce>`
			`// <32 bytes pubkey>`
			`// <N bytes encrypted payload>`
			`//`
Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`byte_t* hash = data();`
			`byte_t* noncePtr = hash + SHORTHASHSIZE;`
			`byte_t* pubkey = noncePtr + TUNNONCESIZE;`
			`byte_t* body = pubkey + PUBKEYSIZE;`
encrypt in place 2018-06-11 13:44:49 +00:00
refactor to use AlignedBuffer for public key, shared secret, nonce, secret key etc 2018-06-12 11:57:14 +00:00			`SharedSecret shared;`
encrypt in place 2018-06-11 13:44:49 +00:00
			`llarp_buffer_t buf;`
			`buf.base = body;`
			`buf.cur = buf.base;`
use fewer allocations 2018-12-20 16:49:05 +00:00			`buf.sz = size() - EncryptedFrameOverheadSize;`
encrypt in place 2018-06-11 13:44:49 +00:00
Port code to use CryptoManager over passing Crypto pointers 2019-05-28 19:45:08 +00:00			`auto crypto = CryptoManager::instance();`

encrypt in place 2018-06-11 13:44:49 +00:00			`// set our pubkey`
Mark more AlignedBuffer constructors as explicit 2019-01-02 01:04:08 +00:00			`memcpy(pubkey, ourSecretKey.toPublic().data(), PUBKEYSIZE);`
encrypt in place 2018-06-11 13:44:49 +00:00			`// randomize nonce`
Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`crypto->randbytes(noncePtr, TUNNONCESIZE);`
			`TunnelNonce nonce(noncePtr);`
encrypt in place 2018-06-11 13:44:49 +00:00
			`// derive shared key`
Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`if(!crypto->dh_client(shared, otherPubkey, ourSecretKey, nonce))`
encrypt in place 2018-06-11 13:44:49 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("DH failed");`
encrypt in place 2018-06-11 13:44:49 +00:00			`return false;`
			`}`
more 2018-06-20 12:34:48 +00:00
encrypt in place 2018-06-11 13:44:49 +00:00			`// encrypt body`
Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`if(!crypto->xchacha20(buf, shared, nonce))`
encrypt in place 2018-06-11 13:44:49 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("encrypt failed");`
encrypt in place 2018-06-11 13:44:49 +00:00			`return false;`
			`}`

			`// generate message auth`
Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`buf.base = noncePtr;`
encrypt in place 2018-06-11 13:44:49 +00:00			`buf.cur = buf.base;`
more path building stuff 2018-06-19 17:11:24 +00:00			`buf.sz = size() - SHORTHASHSIZE;`
encrypt in place 2018-06-11 13:44:49 +00:00
Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`if(!crypto->hmac(hash, buf, shared))`
encrypt in place 2018-06-11 13:44:49 +00:00			`{`
Remove byte* conversion operators from llarp::AlignedBuffer 2019-01-02 01:04:03 +00:00			`llarp::LogError("Failed to generate message auth");`
encrypt in place 2018-06-11 13:44:49 +00:00			`return false;`
			`}`
			`return true;`
			`}`

more onion routing stuff 2018-06-10 14:05:48 +00:00			`bool`
Port code to use CryptoManager over passing Crypto pointers 2019-05-28 19:45:08 +00:00			`EncryptedFrame::DecryptInPlace(const SecretKey& ourSecretKey)`
more onion routing stuff 2018-06-10 14:05:48 +00:00			`{`
encrypted frames 2018-06-11 13:25:10 +00:00			`// format of frame is`
			`// <32 bytes keyed hash of following data>`
			`// <32 bytes nonce>`
			`// <32 bytes pubkey>`
			`// <N bytes encrypted payload>`
			`//`
Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`ShortHash hash(data());`
Mark more AlignedBuffer constructors as explicit 2019-01-02 01:04:08 +00:00			`byte_t* noncePtr = data() + SHORTHASHSIZE;`
			`byte_t* body = data() + EncryptedFrameOverheadSize;`
Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`TunnelNonce nonce(noncePtr);`
Mark more AlignedBuffer constructors as explicit 2019-01-02 01:04:08 +00:00			`PubKey otherPubkey(noncePtr + TUNNONCESIZE);`
encrypted frames 2018-06-11 13:25:10 +00:00
refactor to use AlignedBuffer for public key, shared secret, nonce, secret key etc 2018-06-12 11:57:14 +00:00			`SharedSecret shared;`
encrypted frames 2018-06-11 13:25:10 +00:00
Port code to use CryptoManager over passing Crypto pointers 2019-05-28 19:45:08 +00:00			`auto crypto = CryptoManager::instance();`

Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`// use dh_server because we are not the creator of this message`
			`if(!crypto->dh_server(shared, otherPubkey, ourSecretKey, nonce))`
encrypted frames 2018-06-11 13:25:10 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("DH failed");`
encrypted frames 2018-06-11 13:25:10 +00:00			`return false;`
			`}`

Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`llarp_buffer_t buf;`
			`buf.base = noncePtr;`
			`buf.cur = buf.base;`
			`buf.sz = size() - SHORTHASHSIZE;`

			`ShortHash digest;`
Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`if(!crypto->hmac(digest.data(), buf, shared))`
encrypted frames 2018-06-11 13:25:10 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("Digest failed");`
encrypted frames 2018-06-11 13:25:10 +00:00			`return false;`
			`}`

Mark AlignedBuffer constructor as explicit 2019-01-02 01:04:06 +00:00			`if(!std::equal(digest.begin(), digest.end(), hash.begin()))`
encrypted frames 2018-06-11 13:25:10 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("message authentication failed");`
encrypted frames 2018-06-11 13:25:10 +00:00			`return false;`
			`}`

encrypt in place 2018-06-11 13:44:49 +00:00			`buf.base = body;`
			`buf.cur = body;`
use fewer allocations 2018-12-20 16:49:05 +00:00			`buf.sz = size() - EncryptedFrameOverheadSize;`
encrypt in place 2018-06-11 13:44:49 +00:00
Convert llarp::Crypto into an abstract base class 2019-01-26 15:40:58 +00:00			`if(!crypto->xchacha20(buf, shared, nonce))`
encrypted frames 2018-06-11 13:25:10 +00:00			`{`
* refactor log functions * add more stuff for hidden service dht 2018-07-05 15:44:06 +00:00			`llarp::LogError("decrypt failed");`
encrypted frames 2018-06-11 13:25:10 +00:00			`return false;`
			`}`
			`return true;`
more onion routing stuff 2018-06-10 14:05:48 +00:00			`}`
initial path building stuff (broken) 2018-06-18 22:03:50 +00:00			`} // namespace llarp`