Archives/lokinet
2
0
Fork 0
mirror of https://github.com/oxen-io/lokinet.git synced 2024-11-15 12:13:24 +00:00
Code Issues Projects Releases Wiki Activity
b3dc23e1bf
lokinet/llarp/service/protocol.hpp
Thomas Winget 9e9c1ea732 chahca nonce size is 24 bytes 
Lots of code was using 32-byte nonces for xchacha20 symmetric
encryption, but this just means 8 extra bytes per packet wasted as
chacha is only using the first 24 bytes of that nonce anyway.

Changing this resulted in a lot of dead/dying code breaking, so this
commit also removes a lot of that (and comments a couple places with
TODO instead)

Also nounce -> nonce where it came up.
2023-11-08 15:13:44 -05:00

153 lines
3.7 KiB
C++
Raw Blame History

#pragma once
#include "identity.hpp"
#include "info.hpp"
#include "intro.hpp"
#include "protocol_type.hpp"
#include <llarp/crypto/encrypted.hpp>
#include <llarp/crypto/types.hpp>
#include <llarp/ev/ev.hpp>
#include <llarp/path/pathset.hpp>
#include <llarp/service/convotag.hpp>
#include <llarp/util/bencode.hpp>
#include <llarp/util/time.hpp>
#include <vector>
struct llarp_threadpool;
namespace llarp
{
namespace path
{
/// forward declare
struct Path;
} // namespace path
namespace service
{
struct Endpoint;
constexpr std::size_t MAX_PROTOCOL_MESSAGE_SIZE = 2048 * 2;
/// inner message
struct ProtocolMessage
{
ProtocolMessage(const ConvoTag& tag);
ProtocolMessage();
~ProtocolMessage();
ProtocolType proto = ProtocolType::TrafficV4;
llarp_time_t queued = 0s;
std::vector<byte_t> payload; // encrypted AbstractLinkMessage
Introduction introReply;
ServiceInfo sender;
Endpoint* handler = nullptr;
ConvoTag tag;
std::chrono::milliseconds creation_time{time_now_ms()};
/// encode metainfo for lmq endpoint auth
std::vector<char>
EncodeAuthInfo() const;
bool
decode_key(const llarp_buffer_t& key, llarp_buffer_t* val);
std::string
bt_encode() const;
void
put_buffer(std::string buf);
static void
ProcessAsync(path::Path_ptr p, PathID_t from, std::shared_ptr<ProtocolMessage> self);
bool
operator>(const ProtocolMessage& other) const
{
return creation_time > other.creation_time;
}
};
/// outer message
struct ProtocolFrameMessage
{
PQCipherBlock cipher;
Encrypted<2048> enc;
uint64_t flag; // set to indicate in plaintext a nack, aka "dont try again"
SymmNonce nonce;
Signature sig;
PathID_t path_id;
service::ConvoTag convo_tag;
ProtocolFrameMessage(const ProtocolFrameMessage& other) = default;
ProtocolFrameMessage()
{
clear();
}
~ProtocolFrameMessage() = default;
bool
operator==(const ProtocolFrameMessage& other) const;
bool
operator!=(const ProtocolFrameMessage& other) const
{
return !(*this == other);
}
ProtocolFrameMessage&
operator=(const ProtocolFrameMessage& other) = default;
bool
EncryptAndSign(
const ProtocolMessage& msg, const SharedSecret& sharedkey, const Identity& localIdent);
bool
Sign(const Identity& localIdent);
bool
AsyncDecryptAndVerify(
EventLoop_ptr loop,
path::Path_ptr fromPath,
const Identity& localIdent,
Endpoint* handler,
std::function<void(std::shared_ptr<ProtocolMessage>)> hook = nullptr) const;
bool
DecryptPayloadInto(const SharedSecret& sharedkey, ProtocolMessage& into) const;
bool
decode_key(const llarp_buffer_t& key, llarp_buffer_t* val);
/** Note: this method needs to be re-examined where it is called in the other class methods,
like ::Sign(), ::EncryptAndSign(), and ::Verify(). In all 3 of these cases, the subsequent
methods that the llarp_buffer_t is passed to must be refactored to take either a string, a
redesigned llarp_buffer, or some span backport.
*/
std::string
bt_encode() const;
void
clear()
{
cipher.Zero();
enc.Clear();
path_id.Zero();
convo_tag.Zero();
nonce.Zero();
sig.Zero();
flag = 0;
}
bool
Verify(const ServiceInfo& from) const;
bool
handle_message(Router* r) const;
};
} // namespace service
} // namespace llarp
Reference in New Issue View Git Blame Copy Permalink