mirror of
https://github.com/PurpleI2P/i2pd.git
synced 2025-02-02 02:44:15 +00:00
correct non for token request and retry encryption
This commit is contained in:
orignal
parent
f5f4150d17
commit
2160001167
@ -508,7 +508,7 @@ namespace transport
|
|||||||
uint8_t h[32], payload[40];
|
uint8_t h[32], payload[40];
|
||||||
// fill packet
|
// fill packet
|
||||||
header.h.connID = m_DestConnID; // dest id
|
header.h.connID = m_DestConnID; // dest id
|
||||||
header.h.packetNum = 0;
|
RAND_bytes (header.buf + 8, 4); // random packet num
|
||||||
header.h.type = eSSU2TokenRequest;
|
header.h.type = eSSU2TokenRequest;
|
||||||
header.h.flags[0] = 2; // ver
|
header.h.flags[0] = 2; // ver
|
||||||
header.h.flags[1] = (uint8_t)i2p::context.GetNetID (); // netID
|
header.h.flags[1] = (uint8_t)i2p::context.GetNetID (); // netID
|
||||||
@ -523,11 +523,13 @@ namespace transport
|
|||||||
size_t payloadSize = 7;
|
size_t payloadSize = 7;
|
||||||
payloadSize += CreatePaddingBlock (payload + payloadSize, 40 - payloadSize, 1);
|
payloadSize += CreatePaddingBlock (payload + payloadSize, 40 - payloadSize, 1);
|
||||||
// encrypt
|
// encrypt
|
||||||
const uint8_t nonce[12] = {0};
|
uint8_t nonce[12];
|
||||||
|
CreateNonce (be32toh (header.h.packetNum), nonce);
|
||||||
i2p::crypto::AEADChaCha20Poly1305 (payload, payloadSize, h, 32, m_Address->i, nonce, payload, payloadSize + 16, true);
|
i2p::crypto::AEADChaCha20Poly1305 (payload, payloadSize, h, 32, m_Address->i, nonce, payload, payloadSize + 16, true);
|
||||||
payloadSize += 16;
|
payloadSize += 16;
|
||||||
header.ll[0] ^= CreateHeaderMask (m_Address->i, payload + (payloadSize - 24));
|
header.ll[0] ^= CreateHeaderMask (m_Address->i, payload + (payloadSize - 24));
|
||||||
header.ll[1] ^= CreateHeaderMask (m_Address->i, payload + (payloadSize - 12));
|
header.ll[1] ^= CreateHeaderMask (m_Address->i, payload + (payloadSize - 12));
|
||||||
|
memset (nonce, 0, 12);
|
||||||
i2p::crypto::ChaCha20 (h + 16, 16, m_Address->i, nonce, h + 16);
|
i2p::crypto::ChaCha20 (h + 16, 16, m_Address->i, nonce, h + 16);
|
||||||
// send
|
// send
|
||||||
m_Server.AddPendingOutgoingSession (shared_from_this ());
|
m_Server.AddPendingOutgoingSession (shared_from_this ());
|
||||||
@ -537,12 +539,13 @@ namespace transport
|
|||||||
void SSU2Session::ProcessTokenRequest (Header& header, uint8_t * buf, size_t len)
|
void SSU2Session::ProcessTokenRequest (Header& header, uint8_t * buf, size_t len)
|
||||||
{
|
{
|
||||||
// we are Bob
|
// we are Bob
|
||||||
const uint8_t nonce[12] = {0};
|
uint8_t nonce[12] = {0};
|
||||||
uint8_t h[32];
|
uint8_t h[32];
|
||||||
memcpy (h, header.buf, 16);
|
memcpy (h, header.buf, 16);
|
||||||
i2p::crypto::ChaCha20 (buf + 16, 16, i2p::context.GetSSU2IntroKey (), nonce, h + 16);
|
i2p::crypto::ChaCha20 (buf + 16, 16, i2p::context.GetSSU2IntroKey (), nonce, h + 16);
|
||||||
memcpy (&m_DestConnID, h, 8);
|
memcpy (&m_DestConnID, h + 16, 8);
|
||||||
// decrypt
|
// decrypt
|
||||||
|
CreateNonce (be32toh (header.h.packetNum), nonce);
|
||||||
uint8_t * payload = buf + 32;
|
uint8_t * payload = buf + 32;
|
||||||
if (!i2p::crypto::AEADChaCha20Poly1305 (payload, len - 48, h, 32,
|
if (!i2p::crypto::AEADChaCha20Poly1305 (payload, len - 48, h, 32,
|
||||||
i2p::context.GetSSU2IntroKey (), nonce, payload, len - 48, false))
|
i2p::context.GetSSU2IntroKey (), nonce, payload, len - 48, false))
|
||||||
@ -562,7 +565,7 @@ namespace transport
|
|||||||
uint8_t h[32], payload[64];
|
uint8_t h[32], payload[64];
|
||||||
// fill packet
|
// fill packet
|
||||||
header.h.connID = m_DestConnID; // dest id
|
header.h.connID = m_DestConnID; // dest id
|
||||||
header.h.packetNum = 0;
|
RAND_bytes (header.buf + 8, 4); // random packet num
|
||||||
header.h.type = eSSU2Retry;
|
header.h.type = eSSU2Retry;
|
||||||
header.h.flags[0] = 2; // ver
|
header.h.flags[0] = 2; // ver
|
||||||
header.h.flags[1] = (uint8_t)i2p::context.GetNetID (); // netID
|
header.h.flags[1] = (uint8_t)i2p::context.GetNetID (); // netID
|
||||||
@ -579,11 +582,13 @@ namespace transport
|
|||||||
payloadSize += CreateAddressBlock (m_RemoteEndpoint, payload + payloadSize, 64 - payloadSize);
|
payloadSize += CreateAddressBlock (m_RemoteEndpoint, payload + payloadSize, 64 - payloadSize);
|
||||||
payloadSize += CreatePaddingBlock (payload + payloadSize, 64 - payloadSize);
|
payloadSize += CreatePaddingBlock (payload + payloadSize, 64 - payloadSize);
|
||||||
// encrypt
|
// encrypt
|
||||||
const uint8_t nonce[12] = {0};
|
uint8_t nonce[12];
|
||||||
|
CreateNonce (be32toh (header.h.packetNum), nonce);
|
||||||
i2p::crypto::AEADChaCha20Poly1305 (payload, payloadSize, h, 32, i2p::context.GetSSU2IntroKey (), nonce, payload, payloadSize + 16, true);
|
i2p::crypto::AEADChaCha20Poly1305 (payload, payloadSize, h, 32, i2p::context.GetSSU2IntroKey (), nonce, payload, payloadSize + 16, true);
|
||||||
payloadSize += 16;
|
payloadSize += 16;
|
||||||
header.ll[0] ^= CreateHeaderMask (i2p::context.GetSSU2IntroKey (), payload + (payloadSize - 24));
|
header.ll[0] ^= CreateHeaderMask (i2p::context.GetSSU2IntroKey (), payload + (payloadSize - 24));
|
||||||
header.ll[1] ^= CreateHeaderMask (i2p::context.GetSSU2IntroKey (), payload + (payloadSize - 12));
|
header.ll[1] ^= CreateHeaderMask (i2p::context.GetSSU2IntroKey (), payload + (payloadSize - 12));
|
||||||
|
memset (nonce, 0, 12);
|
||||||
i2p::crypto::ChaCha20 (h + 16, 16, i2p::context.GetSSU2IntroKey (), nonce, h + 16);
|
i2p::crypto::ChaCha20 (h + 16, 16, i2p::context.GetSSU2IntroKey (), nonce, h + 16);
|
||||||
// send
|
// send
|
||||||
m_Server.Send (header.buf, 16, h + 16, 16, payload, payloadSize, m_RemoteEndpoint);
|
m_Server.Send (header.buf, 16, h + 16, 16, payload, payloadSize, m_RemoteEndpoint);
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user