2020-05-22 15:18:41 +02:00
/*
2022-02-02 00:43:11 +01:00
* Copyright ( c ) 2013 - 2022 , The PurpleI2P Project
2020-05-22 15:18:41 +02:00
*
* This file is part of Purple i2pd project and licensed under BSD3
*
* See full license text in LICENSE file at top of project tree
*/
2019-08-13 20:55:18 +02:00
# include "version.h"
2016-05-11 21:12:38 +02:00
# include "Crypto.h"
2014-10-30 20:13:29 +01:00
# include "Log.h"
# include "Timestamp.h"
# include "RouterContext.h"
# include "Transports.h"
2017-04-22 02:04:16 +02:00
# include "NetDb.hpp"
2014-10-30 20:13:29 +01:00
# include "SSU.h"
# include "SSUSession.h"
namespace i2p
{
namespace transport
{
SSUSession : : SSUSession ( SSUServer & server , boost : : asio : : ip : : udp : : endpoint & remoteEndpoint ,
2018-01-06 04:48:51 +01:00
std : : shared_ptr < const i2p : : data : : RouterInfo > router , bool peerTest ) :
TransportSession ( router , SSU_TERMINATION_TIMEOUT ) ,
m_Server ( server ) , m_RemoteEndpoint ( remoteEndpoint ) , m_ConnectTimer ( GetService ( ) ) ,
m_IsPeerTest ( peerTest ) , m_State ( eSessionStateUnknown ) , m_IsSessionKey ( false ) ,
2016-12-30 04:06:33 +01:00
m_RelayTag ( 0 ) , m_SentRelayTag ( 0 ) , m_Data ( * this ) , m_IsDataReceived ( false )
2018-01-06 04:48:51 +01:00
{
2015-11-03 15:15:49 +01:00
if ( router )
{
// we are client
2020-11-21 03:48:33 +01:00
auto address = IsV6 ( ) ? router - > GetSSUV6Address ( ) : router - > GetSSUAddress ( true ) ;
2022-02-06 16:17:35 +01:00
if ( address ) m_IntroKey = address - > i ;
2015-11-03 15:15:49 +01:00
m_Data . AdjustPacketSize ( router ) ; // mtu
}
else
{
// we are server
2020-11-21 03:48:33 +01:00
auto address = IsV6 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) :
i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) ;
2022-02-06 16:17:35 +01:00
if ( address ) m_IntroKey = address - > i ;
2015-11-03 15:15:49 +01:00
}
2014-10-30 20:13:29 +01:00
m_CreationTime = i2p : : util : : GetSecondsSinceEpoch ( ) ;
}
SSUSession : : ~ SSUSession ( )
2018-01-06 04:48:51 +01:00
{
}
2015-02-07 21:25:06 +01:00
2018-01-06 04:48:51 +01:00
boost : : asio : : io_service & SSUSession : : GetService ( )
{
2020-10-15 03:06:51 +02:00
return m_Server . GetService ( ) ;
2015-02-07 21:25:06 +01:00
}
2018-01-06 04:48:51 +01:00
2014-10-30 20:13:29 +01:00
void SSUSession : : CreateAESandMacKey ( const uint8_t * pubKey )
{
uint8_t sharedKey [ 256 ] ;
2015-11-03 15:15:49 +01:00
m_DHKeysPair - > Agree ( pubKey , sharedKey ) ;
2014-10-30 20:13:29 +01:00
2014-11-01 19:56:13 +01:00
uint8_t * sessionKey = m_SessionKey , * macKey = m_MacKey ;
2014-10-30 20:13:29 +01:00
if ( sharedKey [ 0 ] & 0x80 )
{
2014-11-01 19:56:13 +01:00
sessionKey [ 0 ] = 0 ;
memcpy ( sessionKey + 1 , sharedKey , 31 ) ;
memcpy ( macKey , sharedKey + 31 , 32 ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
else if ( sharedKey [ 0 ] )
{
2014-11-01 19:56:13 +01:00
memcpy ( sessionKey , sharedKey , 32 ) ;
memcpy ( macKey , sharedKey + 32 , 32 ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
else
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
// find first non-zero byte
uint8_t * nonZero = sharedKey + 1 ;
while ( ! * nonZero )
{
nonZero + + ;
if ( nonZero - sharedKey > 32 )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogWarning , " SSU: First 32 bytes of shared key is all zeros. Ignored " ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
2014-11-01 19:56:13 +01:00
memcpy ( sessionKey , nonZero , 32 ) ;
2015-11-03 15:15:49 +01:00
SHA256 ( nonZero , 64 - ( nonZero - sharedKey ) , macKey ) ;
2014-10-30 20:13:29 +01:00
}
m_IsSessionKey = true ;
m_SessionKeyEncryption . SetKey ( m_SessionKey ) ;
m_SessionKeyDecryption . SetKey ( m_SessionKey ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : ProcessNextMessage ( uint8_t * buf , size_t len , const boost : : asio : : ip : : udp : : endpoint & senderEndpoint )
{
m_NumReceivedBytes + = len ;
2015-03-17 00:33:59 +01:00
i2p : : transport : : transports . UpdateReceivedBytes ( len ) ;
2014-10-30 20:13:29 +01:00
if ( m_State = = eSessionStateIntroduced )
{
// HolePunch received
2015-12-17 09:09:54 +01:00
LogPrint ( eLogDebug , " SSU: HolePunch of " , len , " bytes received " ) ;
2014-10-30 20:13:29 +01:00
m_State = eSessionStateUnknown ;
Connect ( ) ;
}
else
{
2018-01-06 04:48:51 +01:00
if ( ! len ) return ; // ignore zero-length packets
2014-10-30 20:13:29 +01:00
if ( m_State = = eSessionStateEstablished )
2018-01-06 04:48:51 +01:00
m_LastActivityTimestamp = i2p : : util : : GetSecondsSinceEpoch ( ) ;
2014-10-30 20:13:29 +01:00
if ( m_IsSessionKey & & Validate ( buf , len , m_MacKey ) ) // try session key first
2018-01-06 04:48:51 +01:00
DecryptSessionKey ( buf , len ) ;
else
2014-10-30 20:13:29 +01:00
{
2018-01-06 04:48:51 +01:00
if ( m_State = = eSessionStateEstablished ) Reset ( ) ; // new session key required
2014-10-30 20:13:29 +01:00
// try intro key depending on side
2015-11-03 15:15:49 +01:00
if ( Validate ( buf , len , m_IntroKey ) )
Decrypt ( buf , len , m_IntroKey ) ;
2014-10-30 20:13:29 +01:00
else
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
// try own intro key
2021-04-13 21:11:37 +02:00
auto address = IsV6 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) :
i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) ;
2014-10-30 20:13:29 +01:00
if ( ! address )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " SSU: SSU is not supported " ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2022-02-06 16:17:35 +01:00
if ( Validate ( buf , len , address - > i ) )
Decrypt ( buf , len , address - > i ) ;
2014-10-30 20:13:29 +01:00
else
{
2016-01-28 03:54:42 +01:00
LogPrint ( eLogWarning , " SSU: MAC verification failed " , len , " bytes from " , senderEndpoint ) ;
2018-01-06 04:48:51 +01:00
m_Server . DeleteSession ( shared_from_this ( ) ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
}
}
2014-10-30 20:13:29 +01:00
// successfully decrypted
ProcessMessage ( buf , len , senderEndpoint ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
2015-12-18 17:52:44 +01:00
size_t SSUSession : : GetSSUHeaderSize ( const uint8_t * buf ) const
2015-11-16 19:27:27 +01:00
{
size_t s = sizeof ( SSUHeader ) ;
2015-12-18 17:52:44 +01:00
if ( ( ( const SSUHeader * ) buf ) - > IsExtendedOptions ( ) )
2015-11-16 19:27:27 +01:00
s + = buf [ s ] + 1 ; // byte right after header is extended options length
return s ;
}
2014-10-30 20:13:29 +01:00
void SSUSession : : ProcessMessage ( uint8_t * buf , size_t len , const boost : : asio : : ip : : udp : : endpoint & senderEndpoint )
{
2015-03-30 19:10:36 +02:00
len - = ( len & 0x0F ) ; // %16, delete extra padding
if ( len < = sizeof ( SSUHeader ) ) return ; // drop empty message
2014-12-31 15:14:53 +01:00
//TODO: since we are accessing a uint8_t this is unlikely to crash due to alignment but should be improved
2015-11-16 19:27:27 +01:00
auto headerSize = GetSSUHeaderSize ( buf ) ;
2015-12-18 17:52:44 +01:00
if ( headerSize > = len )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: SSU header size " , headerSize , " exceeds packet length " , len ) ;
2015-12-18 17:52:44 +01:00
return ;
}
2014-10-30 20:13:29 +01:00
SSUHeader * header = ( SSUHeader * ) buf ;
switch ( header - > GetPayloadType ( ) )
{
case PAYLOAD_TYPE_DATA :
2015-11-16 19:27:27 +01:00
ProcessData ( buf + headerSize , len - headerSize ) ;
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_SESSION_REQUEST :
2019-04-25 18:54:44 +02:00
ProcessSessionRequest ( buf , len ) ; // buf with header
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_SESSION_CREATED :
2015-12-18 17:52:44 +01:00
ProcessSessionCreated ( buf , len ) ; // buf with header
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_SESSION_CONFIRMED :
2015-12-18 17:52:44 +01:00
ProcessSessionConfirmed ( buf , len ) ; // buf with header
2018-01-06 04:48:51 +01:00
break ;
2014-10-30 20:13:29 +01:00
case PAYLOAD_TYPE_PEER_TEST :
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test received " ) ;
2015-11-16 19:27:27 +01:00
ProcessPeerTest ( buf + headerSize , len - headerSize , senderEndpoint ) ;
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_SESSION_DESTROYED :
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Session destroy received " ) ;
2018-01-06 04:48:51 +01:00
m_Server . DeleteSession ( shared_from_this ( ) ) ;
2014-10-30 20:13:29 +01:00
break ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
case PAYLOAD_TYPE_RELAY_RESPONSE :
2015-12-18 17:52:44 +01:00
ProcessRelayResponse ( buf + headerSize , len - headerSize ) ;
2014-10-30 20:13:29 +01:00
if ( m_State ! = eSessionStateEstablished )
2014-11-24 18:26:11 +01:00
m_Server . DeleteSession ( shared_from_this ( ) ) ;
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_RELAY_REQUEST :
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Relay request received " ) ;
2015-11-16 19:27:27 +01:00
ProcessRelayRequest ( buf + headerSize , len - headerSize , senderEndpoint ) ;
2014-10-30 20:13:29 +01:00
break ;
case PAYLOAD_TYPE_RELAY_INTRO :
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Relay intro received " ) ;
2015-11-16 19:27:27 +01:00
ProcessRelayIntro ( buf + headerSize , len - headerSize ) ;
2014-10-30 20:13:29 +01:00
break ;
default :
2015-12-17 09:09:54 +01:00
LogPrint ( eLogWarning , " SSU: Unexpected payload type " , ( int ) header - > GetPayloadType ( ) ) ;
2014-10-30 20:13:29 +01:00
}
}
2019-04-25 18:54:44 +02:00
void SSUSession : : ProcessSessionRequest ( const uint8_t * buf , size_t len )
2014-10-30 20:13:29 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU message: Session request " ) ;
2018-01-06 04:48:51 +01:00
bool sendRelayTag = true ;
2016-02-23 18:16:53 +01:00
auto headerSize = sizeof ( SSUHeader ) ;
if ( ( ( SSUHeader * ) buf ) - > IsExtendedOptions ( ) )
{
uint8_t extendedOptionsLen = buf [ headerSize ] ;
headerSize + + ;
2021-03-30 17:31:11 +02:00
if ( extendedOptionsLen > = 2 ) // options are presented
2016-02-23 18:16:53 +01:00
{
uint16_t flags = bufbe16toh ( buf + headerSize ) ;
2018-01-06 04:48:51 +01:00
sendRelayTag = flags & EXTENDED_OPTIONS_FLAG_REQUEST_RELAY_TAG ;
2016-02-23 18:16:53 +01:00
}
headerSize + = extendedOptionsLen ;
2018-01-06 04:48:51 +01:00
}
2016-02-23 18:16:53 +01:00
if ( headerSize > = len )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU message: Session request header size " , headerSize , " exceeds packet length " , len ) ;
2018-01-06 04:48:51 +01:00
return ;
2016-02-23 18:16:53 +01:00
}
2014-10-30 20:13:29 +01:00
if ( ! m_DHKeysPair )
2020-10-14 03:12:52 +02:00
{
auto pair = std : : make_shared < i2p : : crypto : : DHKeys > ( ) ;
pair - > GenerateKeys ( ) ;
m_DHKeysPair = pair ;
2021-11-27 21:30:35 +01:00
}
2016-02-23 18:16:53 +01:00
CreateAESandMacKey ( buf + headerSize ) ;
SendSessionCreated ( buf + headerSize , sendRelayTag ) ;
2014-10-30 20:13:29 +01:00
}
void SSUSession : : ProcessSessionCreated ( uint8_t * buf , size_t len )
{
2015-11-03 15:15:49 +01:00
if ( ! IsOutgoing ( ) | | ! m_DHKeysPair )
2014-10-30 20:13:29 +01:00
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogWarning , " SSU: Unsolicited session created message " ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2015-12-17 09:09:54 +01:00
LogPrint ( eLogDebug , " SSU message: session created " ) ;
2016-08-24 17:21:49 +02:00
m_ConnectTimer . cancel ( ) ; // connect timer
2018-01-06 04:48:51 +01:00
SignedData s ; // x,y, our IP, our port, remote IP, remote port, relayTag, signed on time
auto headerSize = GetSSUHeaderSize ( buf ) ;
2015-12-18 17:52:44 +01:00
if ( headerSize > = len )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU message: Session created header size " , headerSize , " exceeds packet length " , len ) ;
2018-01-06 04:48:51 +01:00
return ;
}
uint8_t * payload = buf + headerSize ;
2014-10-30 20:13:29 +01:00
uint8_t * y = payload ;
CreateAESandMacKey ( y ) ;
2015-11-03 15:15:49 +01:00
s . Insert ( m_DHKeysPair - > GetPublicKey ( ) , 256 ) ; // x
2014-10-30 20:13:29 +01:00
s . Insert ( y , 256 ) ; // y
payload + = 256 ;
boost : : asio : : ip : : address ourIP ;
2021-11-27 21:30:35 +01:00
uint16_t ourPort = 0 ;
2021-03-19 01:11:24 +01:00
auto addressAndPortLen = ExtractIPAddressAndPort ( payload , len , ourIP , ourPort ) ;
if ( ! addressAndPortLen ) return ;
uint8_t * ourAddressAndPort = payload + 1 ;
payload + = addressAndPortLen ;
addressAndPortLen - - ; // -1 byte address size
s . Insert ( ourAddressAndPort , addressAndPortLen ) ; // address + port
2014-10-30 20:13:29 +01:00
if ( m_RemoteEndpoint . address ( ) . is_v4 ( ) )
s . Insert ( m_RemoteEndpoint . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // remote IP v4
else
s . Insert ( m_RemoteEndpoint . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // remote IP v6
2015-02-25 04:17:46 +01:00
s . Insert < uint16_t > ( htobe16 ( m_RemoteEndpoint . port ( ) ) ) ; // remote port
2018-01-06 04:48:51 +01:00
s . Insert ( payload , 8 ) ; // relayTag and signed on time
2014-12-29 23:04:02 +01:00
m_RelayTag = bufbe32toh ( payload ) ;
2014-10-30 20:13:29 +01:00
payload + = 4 ; // relayTag
2022-02-02 00:43:11 +01:00
uint32_t signedOnTime = bufbe32toh ( payload ) ;
2014-10-30 20:13:29 +01:00
payload + = 4 ; // signed on time
// decrypt signature
2015-11-03 15:15:49 +01:00
size_t signatureLen = m_RemoteIdentity - > GetSignatureLen ( ) ;
2014-10-30 20:13:29 +01:00
size_t paddingSize = signatureLen & 0x0F ; // %16
if ( paddingSize > 0 ) signatureLen + = ( 16 - paddingSize ) ;
2014-12-31 15:14:53 +01:00
//TODO: since we are accessing a uint8_t this is unlikely to crash due to alignment but should be improved
2014-10-30 20:13:29 +01:00
m_SessionKeyDecryption . SetIV ( ( ( SSUHeader * ) buf ) - > iv ) ;
2015-12-18 17:52:44 +01:00
m_SessionKeyDecryption . Decrypt ( payload , signatureLen , payload ) ; // TODO: non-const payload
2016-05-10 21:55:48 +02:00
// verify signature
if ( s . Verify ( m_RemoteIdentity , payload ) )
{
2022-02-02 00:43:11 +01:00
if ( ourIP . is_v4 ( ) & & i2p : : context . GetStatus ( ) = = eRouterStatusTesting )
{
auto ts = i2p : : util : : GetSecondsSinceEpoch ( ) ;
int offset = ( int ) ts - signedOnTime ;
if ( m_Server . IsSyncClockFromPeers ( ) )
{
if ( std : : abs ( offset ) > SSU_CLOCK_THRESHOLD )
{
LogPrint ( eLogWarning , " SSU: Clock adjusted by " , - offset , " seconds " ) ;
i2p : : util : : AdjustTimeOffset ( - offset ) ;
2022-05-20 18:56:05 +02:00
}
}
2022-02-02 00:43:11 +01:00
else if ( std : : abs ( offset ) > SSU_CLOCK_SKEW )
{
LogPrint ( eLogError , " SSU: Clock skew detected " , offset , " . Check your clock " ) ;
i2p : : context . SetError ( eRouterErrorClockSkew ) ;
}
}
2016-05-10 21:55:48 +02:00
LogPrint ( eLogInfo , " SSU: Our external address is " , ourIP . to_string ( ) , " : " , ourPort ) ;
2021-04-17 01:31:49 +02:00
if ( ! i2p : : util : : net : : IsInReservedRange ( ourIP ) )
2021-11-27 21:30:35 +01:00
{
2021-04-17 01:31:49 +02:00
i2p : : context . UpdateAddress ( ourIP ) ;
2021-11-27 21:30:35 +01:00
SendSessionConfirmed ( y , ourAddressAndPort , addressAndPortLen ) ;
}
2021-04-17 01:31:49 +02:00
else
2021-11-27 21:30:35 +01:00
{
2021-10-08 11:31:47 +02:00
LogPrint ( eLogError , " SSU: External address " , ourIP . to_string ( ) , " is in reserved range " ) ;
2021-04-17 01:31:49 +02:00
Failed ( ) ;
2021-11-27 21:30:35 +01:00
}
2016-05-10 21:55:48 +02:00
}
else
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: Message 'created' signature verification failed " ) ;
2016-05-10 21:55:48 +02:00
Failed ( ) ;
}
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
2015-12-18 17:52:44 +01:00
void SSUSession : : ProcessSessionConfirmed ( const uint8_t * buf , size_t len )
2014-10-30 20:13:29 +01:00
{
2018-01-06 04:48:51 +01:00
LogPrint ( eLogDebug , " SSU: Session confirmed received " ) ;
2021-11-27 21:30:35 +01:00
m_ConnectTimer . cancel ( ) ;
2018-01-06 04:48:51 +01:00
auto headerSize = GetSSUHeaderSize ( buf ) ;
2015-12-18 17:52:44 +01:00
if ( headerSize > = len )
{
2021-05-04 01:05:25 +02:00
LogPrint ( eLogError , " SSU: Session confirmed header size " , headerSize , " exceeds packet length " , len ) ;
2018-01-06 04:48:51 +01:00
return ;
}
2015-12-18 17:52:44 +01:00
const uint8_t * payload = buf + headerSize ;
2014-10-30 20:13:29 +01:00
payload + + ; // identity fragment info
2018-01-06 04:48:51 +01:00
uint16_t identitySize = bufbe16toh ( payload ) ;
2021-05-04 01:05:25 +02:00
if ( identitySize + headerSize + 7 > len ) // 7 = fragment info + fragment size + signed on time
{
LogPrint ( eLogError , " SSU: Session confirmed identity size " , identitySize , " exceeds packet length " , len ) ;
return ;
2021-11-27 21:30:35 +01:00
}
2014-10-30 20:13:29 +01:00
payload + = 2 ; // size of identity fragment
2017-02-01 21:20:03 +01:00
auto identity = std : : make_shared < i2p : : data : : IdentityEx > ( payload , identitySize ) ;
auto existing = i2p : : data : : netdb . FindRouter ( identity - > GetIdentHash ( ) ) ; // check if exists already
SetRemoteIdentity ( existing ? existing - > GetRouterIdentity ( ) : identity ) ;
2015-11-03 15:15:49 +01:00
m_Data . UpdatePacketSize ( m_RemoteIdentity - > GetIdentHash ( ) ) ;
2018-01-06 04:48:51 +01:00
payload + = identitySize ; // identity
2016-09-19 00:42:21 +02:00
auto ts = i2p : : util : : GetSecondsSinceEpoch ( ) ;
2018-01-06 04:48:51 +01:00
uint32_t signedOnTime = bufbe32toh ( payload ) ;
2016-09-19 00:42:21 +02:00
if ( signedOnTime < ts - SSU_CLOCK_SKEW | | signedOnTime > ts + SSU_CLOCK_SKEW )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: Message 'confirmed' time difference " , ( int ) ts - signedOnTime , " exceeds clock skew " ) ;
2016-09-19 00:42:21 +02:00
Failed ( ) ;
return ;
2018-01-06 04:48:51 +01:00
}
2015-11-03 15:15:49 +01:00
if ( m_SignedData )
m_SignedData - > Insert ( payload , 4 ) ; // insert Alice's signed on time
2014-10-30 20:13:29 +01:00
payload + = 4 ; // signed-on time
2021-05-04 01:05:25 +02:00
size_t fullSize = ( payload - buf ) + m_RemoteIdentity - > GetSignatureLen ( ) ;
size_t paddingSize = fullSize & 0x0F ; // %16
2014-10-30 20:13:29 +01:00
if ( paddingSize > 0 ) paddingSize = 16 - paddingSize ;
payload + = paddingSize ;
2021-05-04 01:05:25 +02:00
if ( fullSize + paddingSize > len )
{
LogPrint ( eLogError , " SSU: Session confirmed message is too short " , len ) ;
return ;
2021-11-27 21:30:35 +01:00
}
2016-05-10 21:55:48 +02:00
// verify signature
if ( m_SignedData & & m_SignedData - > Verify ( m_RemoteIdentity , payload ) )
{
m_Data . Send ( CreateDeliveryStatusMsg ( 0 ) ) ;
Established ( ) ;
}
2018-01-06 04:48:51 +01:00
else
2016-05-10 21:55:48 +02:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: Message 'confirmed' signature verification failed " ) ;
2016-05-10 21:55:48 +02:00
Failed ( ) ;
}
2014-10-30 20:13:29 +01:00
}
void SSUSession : : SendSessionRequest ( )
2018-01-06 04:48:51 +01:00
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ 320 + 18 ] = { 0 } ; // 304 bytes for ipv4, 320 for ipv6
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2016-02-26 00:40:40 +01:00
uint8_t flag = 0 ;
2016-02-25 21:57:58 +01:00
// fill extended options, 3 bytes extended options don't change message size
2021-03-24 15:32:15 +01:00
bool isV4 = m_RemoteEndpoint . address ( ) . is_v4 ( ) ;
if ( ( isV4 & & i2p : : context . GetStatus ( ) = = eRouterStatusOK ) | |
2022-05-20 18:56:05 +02:00
( ! isV4 & & i2p : : context . GetStatusV6 ( ) = = eRouterStatusOK ) ) // we don't need relays
2018-01-06 04:48:51 +01:00
{
2016-02-25 21:57:58 +01:00
// tell out peer to now assign relay tag
2016-02-26 00:40:40 +01:00
flag = SSU_HEADER_EXTENDED_OPTIONS_INCLUDED ;
2022-05-20 18:56:05 +02:00
* payload = 2 ; payload + + ; // 1 byte length
2016-02-25 21:57:58 +01:00
uint16_t flags = 0 ; // clear EXTENDED_OPTIONS_FLAG_REQUEST_RELAY_TAG
2018-01-06 04:48:51 +01:00
htobe16buf ( payload , flags ) ;
2016-02-25 21:57:58 +01:00
payload + = 2 ;
2018-01-06 04:48:51 +01:00
}
2016-02-25 21:57:58 +01:00
// fill payload
2015-11-03 15:15:49 +01:00
memcpy ( payload , m_DHKeysPair - > GetPublicKey ( ) , 256 ) ; // x
2014-10-30 20:13:29 +01:00
if ( isV4 )
{
2018-01-06 04:48:51 +01:00
payload [ 256 ] = 4 ;
memcpy ( payload + 257 , m_RemoteEndpoint . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ;
2014-10-30 20:13:29 +01:00
}
else
{
2018-01-06 04:48:51 +01:00
payload [ 256 ] = 16 ;
memcpy ( payload + 257 , m_RemoteEndpoint . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ;
}
2016-02-25 21:57:58 +01:00
// encrypt and send
2014-10-30 20:13:29 +01:00
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2016-02-26 00:40:40 +01:00
FillHeaderAndEncrypt ( PAYLOAD_TYPE_SESSION_REQUEST , buf , isV4 ? 304 : 320 , m_IntroKey , iv , m_IntroKey , flag ) ;
2014-10-30 20:13:29 +01:00
m_Server . Send ( buf , isV4 ? 304 : 320 , m_RemoteEndpoint ) ;
}
2015-12-10 04:17:43 +01:00
void SSUSession : : SendRelayRequest ( const i2p : : data : : RouterInfo : : Introducer & introducer , uint32_t nonce )
2014-10-30 20:13:29 +01:00
{
2021-04-13 21:11:37 +02:00
auto address = IsV6 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) :
i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) ;
2014-10-30 20:13:29 +01:00
if ( ! address )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " SSU: SSU is not supported " ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2018-01-06 04:48:51 +01:00
2017-01-08 17:09:33 +01:00
uint8_t buf [ 96 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2015-11-03 15:15:49 +01:00
htobe32buf ( payload , introducer . iTag ) ;
2014-10-30 20:13:29 +01:00
payload + = 4 ;
* payload = 0 ; // no address
payload + + ;
2014-12-30 15:37:24 +01:00
htobuf16 ( payload , 0 ) ; // port = 0
2014-10-30 20:13:29 +01:00
payload + = 2 ;
* payload = 0 ; // challenge
2018-01-06 04:48:51 +01:00
payload + + ;
2022-02-06 16:17:35 +01:00
memcpy ( payload , ( const uint8_t * ) address - > i , 32 ) ;
2014-10-30 20:13:29 +01:00
payload + = 32 ;
2018-01-06 04:48:51 +01:00
htobe32buf ( payload , nonce ) ; // nonce
2014-10-30 20:13:29 +01:00
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2014-10-30 20:13:29 +01:00
if ( m_State = = eSessionStateEstablished )
FillHeaderAndEncrypt ( PAYLOAD_TYPE_RELAY_REQUEST , buf , 96 , m_SessionKey , iv , m_MacKey ) ;
else
2018-01-06 04:48:51 +01:00
FillHeaderAndEncrypt ( PAYLOAD_TYPE_RELAY_REQUEST , buf , 96 , introducer . iKey , iv , introducer . iKey ) ;
2014-10-30 20:13:29 +01:00
m_Server . Send ( buf , 96 , m_RemoteEndpoint ) ;
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Relay request sent " ) ;
2014-10-30 20:13:29 +01:00
}
2016-02-23 18:16:53 +01:00
void SSUSession : : SendSessionCreated ( const uint8_t * x , bool sendRelayTag )
2014-10-30 20:13:29 +01:00
{
auto address = IsV6 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) :
i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) ; //v4 only
2015-11-03 15:15:49 +01:00
if ( ! address )
2014-10-30 20:13:29 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " SSU: SSU is not supported " ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2018-01-06 04:48:51 +01:00
SignedData s ; // x,y, remote IP, remote port, our IP, our port, relayTag, signed on time
2014-10-30 20:13:29 +01:00
s . Insert ( x , 256 ) ; // x
2017-01-08 17:09:33 +01:00
uint8_t buf [ 384 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2015-11-03 15:15:49 +01:00
memcpy ( payload , m_DHKeysPair - > GetPublicKey ( ) , 256 ) ;
2014-10-30 20:13:29 +01:00
s . Insert ( payload , 256 ) ; // y
payload + = 256 ;
if ( m_RemoteEndpoint . address ( ) . is_v4 ( ) )
{
// ipv4
* payload = 4 ;
payload + + ;
2018-01-06 04:48:51 +01:00
memcpy ( payload , m_RemoteEndpoint . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ;
2014-10-30 20:13:29 +01:00
s . Insert ( payload , 4 ) ; // remote endpoint IP V4
payload + = 4 ;
}
else
{
// ipv6
* payload = 16 ;
payload + + ;
2018-01-06 04:48:51 +01:00
memcpy ( payload , m_RemoteEndpoint . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ;
2014-10-30 20:13:29 +01:00
s . Insert ( payload , 16 ) ; // remote endpoint IP V6
payload + = 16 ;
}
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , m_RemoteEndpoint . port ( ) ) ;
2014-10-30 20:13:29 +01:00
s . Insert ( payload , 2 ) ; // remote port
payload + = 2 ;
if ( address - > host . is_v4 ( ) )
s . Insert ( address - > host . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // our IP V4
else
s . Insert ( address - > host . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // our IP V6
2015-02-25 04:17:46 +01:00
s . Insert < uint16_t > ( htobe16 ( address - > port ) ) ; // our port
2021-03-30 17:31:11 +02:00
if ( sendRelayTag & & i2p : : context . GetRouterInfo ( ) . IsIntroducer ( ! IsV6 ( ) ) )
2014-10-30 20:13:29 +01:00
{
2016-12-30 04:06:33 +01:00
RAND_bytes ( ( uint8_t * ) & m_SentRelayTag , 4 ) ;
if ( ! m_SentRelayTag ) m_SentRelayTag = 1 ;
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
htobe32buf ( payload , m_SentRelayTag ) ;
payload + = 4 ; // relay tag
2014-12-30 15:37:24 +01:00
htobe32buf ( payload , i2p : : util : : GetSecondsSinceEpoch ( ) ) ; // signed on time
2014-10-30 20:13:29 +01:00
payload + = 4 ;
2018-01-06 04:48:51 +01:00
s . Insert ( payload - 8 , 4 ) ; // relayTag
2015-11-03 15:15:49 +01:00
// we have to store this signed data for session confirmed
2018-01-06 04:48:51 +01:00
// same data but signed on time, it will Alice's there
m_SignedData = std : : unique_ptr < SignedData > ( new SignedData ( s ) ) ;
s . Insert ( payload - 4 , 4 ) ; // BOB's signed on time
2014-10-30 20:13:29 +01:00
s . Sign ( i2p : : context . GetPrivateKeys ( ) , payload ) ; // DSA signature
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2018-01-06 04:48:51 +01:00
// encrypt signature and padding with newly created session key
2015-11-03 15:15:49 +01:00
size_t signatureLen = i2p : : context . GetIdentity ( ) - > GetSignatureLen ( ) ;
2014-10-30 20:13:29 +01:00
size_t paddingSize = signatureLen & 0x0F ; // %16
2017-01-08 17:09:33 +01:00
if ( paddingSize > 0 )
{
// fill random padding
RAND_bytes ( payload + signatureLen , ( 16 - paddingSize ) ) ;
signatureLen + = ( 16 - paddingSize ) ;
}
2014-10-30 20:13:29 +01:00
m_SessionKeyEncryption . SetIV ( iv ) ;
m_SessionKeyEncryption . Encrypt ( payload , signatureLen , payload ) ;
payload + = signatureLen ;
size_t msgLen = payload - buf ;
2018-01-06 04:48:51 +01:00
2014-10-30 20:13:29 +01:00
// encrypt message with intro key
2018-01-06 04:48:51 +01:00
FillHeaderAndEncrypt ( PAYLOAD_TYPE_SESSION_CREATED , buf , msgLen , m_IntroKey , iv , m_IntroKey ) ;
2014-10-30 20:13:29 +01:00
Send ( buf , msgLen ) ;
}
void SSUSession : : SendSessionConfirmed ( const uint8_t * y , const uint8_t * ourAddress , size_t ourAddressLen )
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ 512 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
* payload = 1 ; // 1 fragment
payload + + ; // info
2015-11-03 15:15:49 +01:00
size_t identLen = i2p : : context . GetIdentity ( ) - > GetFullLen ( ) ; // 387+ bytes
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , identLen ) ;
2014-10-30 20:13:29 +01:00
payload + = 2 ; // cursize
2015-11-03 15:15:49 +01:00
i2p : : context . GetIdentity ( ) - > ToBuffer ( payload , identLen ) ;
2014-10-30 20:13:29 +01:00
payload + = identLen ;
uint32_t signedOnTime = i2p : : util : : GetSecondsSinceEpoch ( ) ;
2014-12-30 15:37:24 +01:00
htobe32buf ( payload , signedOnTime ) ; // signed on time
2014-10-30 20:13:29 +01:00
payload + = 4 ;
2015-11-03 15:15:49 +01:00
auto signatureLen = i2p : : context . GetIdentity ( ) - > GetSignatureLen ( ) ;
2014-10-30 20:13:29 +01:00
size_t paddingSize = ( ( payload - buf ) + signatureLen ) % 16 ;
if ( paddingSize > 0 ) paddingSize = 16 - paddingSize ;
2017-01-08 17:09:33 +01:00
RAND_bytes ( payload , paddingSize ) ; // fill padding with random
2014-10-30 20:13:29 +01:00
payload + = paddingSize ; // padding size
2018-01-06 04:48:51 +01:00
// signature
SignedData s ; // x,y, our IP, our port, remote IP, remote port, relayTag, our signed on time
2015-11-03 15:15:49 +01:00
s . Insert ( m_DHKeysPair - > GetPublicKey ( ) , 256 ) ; // x
2014-10-30 20:13:29 +01:00
s . Insert ( y , 256 ) ; // y
s . Insert ( ourAddress , ourAddressLen ) ; // our address/port as seem by party
if ( m_RemoteEndpoint . address ( ) . is_v4 ( ) )
s . Insert ( m_RemoteEndpoint . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // remote IP V4
else
2018-01-06 04:48:51 +01:00
s . Insert ( m_RemoteEndpoint . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // remote IP V6
2015-02-25 04:17:46 +01:00
s . Insert < uint16_t > ( htobe16 ( m_RemoteEndpoint . port ( ) ) ) ; // remote port
2014-10-30 20:13:29 +01:00
s . Insert ( htobe32 ( m_RelayTag ) ) ; // relay tag
s . Insert ( htobe32 ( signedOnTime ) ) ; // signed on time
2018-01-06 04:48:51 +01:00
s . Sign ( i2p : : context . GetPrivateKeys ( ) , payload ) ; // DSA signature
2014-10-30 20:13:29 +01:00
payload + = signatureLen ;
2018-01-06 04:48:51 +01:00
2014-10-30 20:13:29 +01:00
size_t msgLen = payload - buf ;
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2014-10-30 20:13:29 +01:00
// encrypt message with session key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_SESSION_CONFIRMED , buf , msgLen , m_SessionKey , iv , m_MacKey ) ;
Send ( buf , msgLen ) ;
}
2015-12-18 17:52:44 +01:00
void SSUSession : : ProcessRelayRequest ( const uint8_t * buf , size_t len , const boost : : asio : : ip : : udp : : endpoint & from )
2014-10-30 20:13:29 +01:00
{
2014-12-29 23:04:02 +01:00
uint32_t relayTag = bufbe32toh ( buf ) ;
2014-10-30 20:13:29 +01:00
auto session = m_Server . FindRelaySession ( relayTag ) ;
if ( session )
{
2018-01-06 04:48:51 +01:00
buf + = 4 ; // relay tag
2014-10-30 20:13:29 +01:00
uint8_t size = * buf ;
buf + + ; // size
buf + = size ; // address
buf + = 2 ; // port
uint8_t challengeSize = * buf ;
buf + + ; // challenge size
buf + = challengeSize ;
2015-12-18 17:52:44 +01:00
const uint8_t * introKey = buf ;
2014-10-30 20:13:29 +01:00
buf + = 32 ; // introkey
2014-12-29 23:04:02 +01:00
uint32_t nonce = bufbe32toh ( buf ) ;
2014-10-30 20:13:29 +01:00
SendRelayResponse ( nonce , from , introKey , session - > m_RemoteEndpoint ) ;
2015-11-30 16:23:05 +01:00
SendRelayIntro ( session , from ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
void SSUSession : : SendRelayResponse ( uint32_t nonce , const boost : : asio : : ip : : udp : : endpoint & from ,
const uint8_t * introKey , const boost : : asio : : ip : : udp : : endpoint & to )
{
2021-04-15 22:06:02 +02:00
bool isV4 = to . address ( ) . is_v4 ( ) ; // Charle's
bool isV4A = from . address ( ) . is_v4 ( ) ; // Alice's
if ( ( isV4 & & ! isV4A ) | | ( ! isV4 & & isV4A ) )
2014-10-30 20:13:29 +01:00
{
2021-04-15 22:06:02 +02:00
LogPrint ( eLogWarning , " SSU: Charlie's IP and Alice's IP belong to different networks for relay response " ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2021-04-15 22:06:02 +02:00
uint8_t buf [ 80 + 18 ] = { 0 } ; // 64 for ipv4 and 80 for ipv6
2016-12-24 18:04:39 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2021-04-15 22:06:02 +02:00
// Charlie
if ( isV4 )
2021-11-27 21:30:35 +01:00
{
2021-04-15 22:06:02 +02:00
* payload = 4 ;
payload + + ; // size
memcpy ( payload , to . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // Charlie's IP V4
payload + = 4 ; // address
2021-11-27 21:30:35 +01:00
}
2021-04-15 22:06:02 +02:00
else
{
* payload = 16 ;
payload + + ; // size
2021-10-08 11:31:47 +02:00
memcpy ( payload , to . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // Charlie's IP V6
2021-04-15 22:06:02 +02:00
payload + = 16 ; // address
2021-11-27 21:30:35 +01:00
}
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , to . port ( ) ) ; // Charlie's port
2014-10-30 20:13:29 +01:00
payload + = 2 ; // port
// Alice
if ( isV4 )
{
* payload = 4 ;
payload + + ; // size
memcpy ( payload , from . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // Alice's IP V4
2018-01-06 04:48:51 +01:00
payload + = 4 ; // address
2014-10-30 20:13:29 +01:00
}
else
{
* payload = 16 ;
payload + + ; // size
memcpy ( payload , from . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // Alice's IP V6
2018-01-06 04:48:51 +01:00
payload + = 16 ; // address
2014-10-30 20:13:29 +01:00
}
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , from . port ( ) ) ; // Alice's port
2014-10-30 20:13:29 +01:00
payload + = 2 ; // port
2018-01-06 04:48:51 +01:00
htobe32buf ( payload , nonce ) ;
2014-10-30 20:13:29 +01:00
if ( m_State = = eSessionStateEstablished )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
// encrypt with session key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_RELAY_RESPONSE , buf , isV4 ? 64 : 80 ) ;
Send ( buf , isV4 ? 64 : 80 ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
else
{
// ecrypt with Alice's intro key
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2014-10-30 20:13:29 +01:00
FillHeaderAndEncrypt ( PAYLOAD_TYPE_RELAY_RESPONSE , buf , isV4 ? 64 : 80 , introKey , iv , introKey ) ;
m_Server . Send ( buf , isV4 ? 64 : 80 , from ) ;
2018-01-06 04:48:51 +01:00
}
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Relay response sent " ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
2015-11-30 16:23:05 +01:00
void SSUSession : : SendRelayIntro ( std : : shared_ptr < SSUSession > session , const boost : : asio : : ip : : udp : : endpoint & from )
2014-10-30 20:13:29 +01:00
{
2018-01-06 04:48:51 +01:00
if ( ! session ) return ;
2021-04-15 22:06:02 +02:00
bool isV4 = from . address ( ) . is_v4 ( ) ; // Alice's
bool isV4C = session - > m_RemoteEndpoint . address ( ) . is_v4 ( ) ; // Charlie's
if ( ( isV4 & & ! isV4C ) | | ( ! isV4 & & isV4C ) )
2014-10-30 20:13:29 +01:00
{
2021-04-15 22:06:02 +02:00
LogPrint ( eLogWarning , " SSU: Charlie's IP and Alice's IP belong to different networks for relay intro " ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2021-04-15 22:06:02 +02:00
uint8_t buf [ 64 + 18 ] = { 0 } ; // 48 for ipv4 and 64 for ipv6
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2021-04-15 22:06:02 +02:00
if ( isV4 )
{
* payload = 4 ;
payload + + ; // size
memcpy ( payload , from . address ( ) . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // Alice's IP V4
payload + = 4 ; // address
}
else
{
* payload = 16 ;
payload + + ; // size
memcpy ( payload , from . address ( ) . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // Alice's IP V6
payload + = 16 ; // address
}
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , from . port ( ) ) ; // Alice's port
2014-10-30 20:13:29 +01:00
payload + = 2 ; // port
2018-01-06 04:48:51 +01:00
* payload = 0 ; // challenge size
2014-10-30 20:13:29 +01:00
uint8_t iv [ 16 ] ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2021-04-15 22:06:02 +02:00
FillHeaderAndEncrypt ( PAYLOAD_TYPE_RELAY_INTRO , buf , isV4 ? 48 : 64 , session - > m_SessionKey , iv , session - > m_MacKey ) ;
m_Server . Send ( buf , isV4 ? 48 : 64 , session - > m_RemoteEndpoint ) ;
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Relay intro sent " ) ;
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
2015-12-18 17:52:44 +01:00
void SSUSession : : ProcessRelayResponse ( const uint8_t * buf , size_t len )
2014-10-30 20:13:29 +01:00
{
2018-01-06 04:48:51 +01:00
LogPrint ( eLogDebug , " SSU message: Relay response received " ) ;
2021-03-19 02:29:39 +01:00
boost : : asio : : ip : : address remoteIP ;
uint16_t remotePort = 0 ;
auto remoteSize = ExtractIPAddressAndPort ( buf , len , remoteIP , remotePort ) ;
if ( ! remoteSize ) return ;
buf + = remoteSize ; len - = remoteSize ;
2014-10-30 20:13:29 +01:00
boost : : asio : : ip : : address ourIP ;
2021-03-19 02:29:39 +01:00
uint16_t ourPort = 0 ;
auto ourSize = ExtractIPAddressAndPort ( buf , len , ourIP , ourPort ) ;
if ( ! ourSize ) return ;
buf + = ourSize ; len - = ourSize ;
2015-12-17 09:09:54 +01:00
LogPrint ( eLogInfo , " SSU: Our external address is " , ourIP . to_string ( ) , " : " , ourPort ) ;
2021-04-17 01:31:49 +02:00
if ( ! i2p : : util : : net : : IsInReservedRange ( ourIP ) )
i2p : : context . UpdateAddress ( ourIP ) ;
else
2021-10-08 11:31:47 +02:00
LogPrint ( eLogError , " SSU: External address " , ourIP . to_string ( ) , " is in reserved range " ) ;
2021-03-24 15:32:15 +01:00
if ( ourIP . is_v4 ( ) )
2021-11-27 21:30:35 +01:00
{
2021-03-24 15:32:15 +01:00
if ( ourPort ! = m_Server . GetPort ( ) )
2021-11-27 21:30:35 +01:00
{
2021-03-24 15:32:15 +01:00
if ( i2p : : context . GetStatus ( ) = = eRouterStatusTesting )
i2p : : context . SetError ( eRouterErrorSymmetricNAT ) ;
}
else if ( i2p : : context . GetStatus ( ) = = eRouterStatusError & & i2p : : context . GetError ( ) = = eRouterErrorSymmetricNAT )
i2p : : context . SetStatus ( eRouterStatusTesting ) ;
2021-11-27 21:30:35 +01:00
}
2015-12-18 17:52:44 +01:00
uint32_t nonce = bufbe32toh ( buf ) ;
buf + = 4 ; // nonce
2015-12-10 04:17:43 +01:00
auto it = m_RelayRequests . find ( nonce ) ;
if ( it ! = m_RelayRequests . end ( ) )
2018-01-06 04:48:51 +01:00
{
2015-12-10 04:17:43 +01:00
// check if we are waiting for introduction
boost : : asio : : ip : : udp : : endpoint remoteEndpoint ( remoteIP , remotePort ) ;
if ( ! m_Server . FindSession ( remoteEndpoint ) )
{
// we didn't have correct endpoint when sent relay request
// now we do
2015-12-17 09:09:54 +01:00
LogPrint ( eLogInfo , " SSU: RelayReponse connecting to endpoint " , remoteEndpoint ) ;
2021-04-09 03:07:14 +02:00
if ( ( remoteIP . is_v4 ( ) & & i2p : : context . GetStatus ( ) = = eRouterStatusFirewalled ) | |
2021-11-27 21:30:35 +01:00
( remoteIP . is_v6 ( ) & & i2p : : context . GetStatusV6 ( ) = = eRouterStatusFirewalled ) )
2015-12-10 04:17:43 +01:00
m_Server . Send ( buf , 0 , remoteEndpoint ) ; // send HolePunch
2021-03-29 21:16:39 +02:00
// we assume that HolePunch has been sent by this time and our SessionRequest will go through
2021-09-23 01:09:56 +02:00
m_Server . CreateDirectSession ( it - > second . first , remoteEndpoint , false ) ;
2018-01-06 04:48:51 +01:00
}
2015-12-10 04:17:43 +01:00
// delete request
m_RelayRequests . erase ( it ) ;
2021-04-13 21:11:37 +02:00
// cancel connect timer
m_ConnectTimer . cancel ( ) ;
2018-01-06 04:48:51 +01:00
}
2015-12-10 04:17:43 +01:00
else
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unsolicited RelayResponse, nonce= " , nonce ) ;
2014-10-30 20:13:29 +01:00
}
2015-12-18 17:52:44 +01:00
void SSUSession : : ProcessRelayIntro ( const uint8_t * buf , size_t len )
2014-10-30 20:13:29 +01:00
{
2021-03-18 23:37:02 +01:00
boost : : asio : : ip : : address ip ;
2021-03-19 01:11:24 +01:00
uint16_t port = 0 ;
ExtractIPAddressAndPort ( buf , len , ip , port ) ;
if ( ! ip . is_unspecified ( ) & & port )
// send hole punch of 0 bytes
m_Server . Send ( buf , 0 , boost : : asio : : ip : : udp : : endpoint ( ip , port ) ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
2018-01-06 04:48:51 +01:00
void SSUSession : : FillHeaderAndEncrypt ( uint8_t payloadType , uint8_t * buf , size_t len ,
2016-02-26 00:40:40 +01:00
const i2p : : crypto : : AESKey & aesKey , const uint8_t * iv , const i2p : : crypto : : MACKey & macKey , uint8_t flag )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
if ( len < sizeof ( SSUHeader ) )
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unexpected packet length " , len ) ;
2014-10-30 20:13:29 +01:00
return ;
}
SSUHeader * header = ( SSUHeader * ) buf ;
memcpy ( header - > iv , iv , 16 ) ;
2016-02-26 00:40:40 +01:00
header - > flag = flag | ( payloadType < < 4 ) ; // MSB is 0
2016-01-10 01:24:52 +01:00
htobe32buf ( header - > time , i2p : : util : : GetSecondsSinceEpoch ( ) ) ;
2014-10-30 20:13:29 +01:00
uint8_t * encrypted = & header - > flag ;
uint16_t encryptedLen = len - ( encrypted - buf ) ;
i2p : : crypto : : CBCEncryption encryption ;
encryption . SetKey ( aesKey ) ;
encryption . SetIV ( iv ) ;
encryption . Encrypt ( encrypted , encryptedLen , encrypted ) ;
// assume actual buffer size is 18 (16 + 2) bytes more
memcpy ( buf + len , iv , 16 ) ;
2019-08-13 20:55:18 +02:00
uint16_t netid = i2p : : context . GetNetID ( ) ;
htobe16buf ( buf + len + 16 , ( netid = = I2PD_NET_ID ) ? encryptedLen : encryptedLen ^ ( ( netid - 2 ) < < 8 ) ) ;
2014-10-30 20:13:29 +01:00
i2p : : crypto : : HMACMD5Digest ( encrypted , encryptedLen + 18 , macKey , header - > mac ) ;
}
void SSUSession : : FillHeaderAndEncrypt ( uint8_t payloadType , uint8_t * buf , size_t len )
2020-08-09 01:01:55 +02:00
{
FillHeaderAndEncrypt ( payloadType , buf , len , buf ) ;
}
void SSUSession : : FillHeaderAndEncrypt ( uint8_t payloadType , uint8_t * in , size_t len , uint8_t * out )
2014-10-30 20:13:29 +01:00
{
if ( len < sizeof ( SSUHeader ) )
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unexpected packet length " , len ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2020-08-09 01:01:55 +02:00
SSUHeader * header = ( SSUHeader * ) out ;
2015-11-03 15:15:49 +01:00
RAND_bytes ( header - > iv , 16 ) ; // random iv
2014-10-30 20:13:29 +01:00
m_SessionKeyEncryption . SetIV ( header - > iv ) ;
2020-08-09 01:01:55 +02:00
SSUHeader * inHeader = ( SSUHeader * ) in ;
inHeader - > flag = payloadType < < 4 ; // MSB is 0
htobe32buf ( inHeader - > time , i2p : : util : : GetSecondsSinceEpoch ( ) ) ;
uint8_t * encrypted = & header - > flag , * clear = & inHeader - > flag ;
uint16_t encryptedLen = len - ( encrypted - out ) ;
m_SessionKeyEncryption . Encrypt ( clear , encryptedLen , encrypted ) ;
// assume actual out buffer size is 18 (16 + 2) bytes more
memcpy ( out + len , header - > iv , 16 ) ;
2019-08-13 20:55:18 +02:00
uint16_t netid = i2p : : context . GetNetID ( ) ;
2020-08-09 01:01:55 +02:00
htobe16buf ( out + len + 16 , ( netid = = I2PD_NET_ID ) ? encryptedLen : encryptedLen ^ ( ( netid - 2 ) < < 8 ) ) ;
2014-10-30 20:13:29 +01:00
i2p : : crypto : : HMACMD5Digest ( encrypted , encryptedLen + 18 , m_MacKey , header - > mac ) ;
2018-01-06 04:48:51 +01:00
}
2021-11-27 21:30:35 +01:00
2015-11-03 15:15:49 +01:00
void SSUSession : : Decrypt ( uint8_t * buf , size_t len , const i2p : : crypto : : AESKey & aesKey )
2014-10-30 20:13:29 +01:00
{
if ( len < sizeof ( SSUHeader ) )
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unexpected packet length " , len ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
SSUHeader * header = ( SSUHeader * ) buf ;
uint8_t * encrypted = & header - > flag ;
2018-01-06 04:48:51 +01:00
uint16_t encryptedLen = len - ( encrypted - buf ) ;
2014-10-30 20:13:29 +01:00
i2p : : crypto : : CBCDecryption decryption ;
decryption . SetKey ( aesKey ) ;
decryption . SetIV ( header - > iv ) ;
decryption . Decrypt ( encrypted , encryptedLen , encrypted ) ;
}
void SSUSession : : DecryptSessionKey ( uint8_t * buf , size_t len )
{
if ( len < sizeof ( SSUHeader ) )
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unexpected packet length " , len ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
SSUHeader * header = ( SSUHeader * ) buf ;
uint8_t * encrypted = & header - > flag ;
2018-01-06 04:48:51 +01:00
uint16_t encryptedLen = len - ( encrypted - buf ) ;
2014-10-30 20:13:29 +01:00
if ( encryptedLen > 0 )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
m_SessionKeyDecryption . SetIV ( header - > iv ) ;
m_SessionKeyDecryption . Decrypt ( encrypted , encryptedLen , encrypted ) ;
2018-01-06 04:48:51 +01:00
}
}
2015-11-03 15:15:49 +01:00
bool SSUSession : : Validate ( uint8_t * buf , size_t len , const i2p : : crypto : : MACKey & macKey )
2014-10-30 20:13:29 +01:00
{
if ( len < sizeof ( SSUHeader ) )
{
2015-12-17 09:09:54 +01:00
LogPrint ( eLogError , " SSU: Unexpected packet length " , len ) ;
2014-10-30 20:13:29 +01:00
return false ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
SSUHeader * header = ( SSUHeader * ) buf ;
uint8_t * encrypted = & header - > flag ;
uint16_t encryptedLen = len - ( encrypted - buf ) ;
// assume actual buffer size is 18 (16 + 2) bytes more
memcpy ( buf + len , header - > iv , 16 ) ;
2019-08-13 20:55:18 +02:00
uint16_t netid = i2p : : context . GetNetID ( ) ;
htobe16buf ( buf + len + 16 , ( netid = = I2PD_NET_ID ) ? encryptedLen : encryptedLen ^ ( ( netid - 2 ) < < 8 ) ) ;
2014-10-30 20:13:29 +01:00
uint8_t digest [ 16 ] ;
i2p : : crypto : : HMACMD5Digest ( encrypted , encryptedLen + 18 , macKey , digest ) ;
return ! memcmp ( header - > mac , digest , 16 ) ;
}
void SSUSession : : Connect ( )
{
if ( m_State = = eSessionStateUnknown )
2018-01-06 04:48:51 +01:00
{
2020-10-14 03:12:52 +02:00
ScheduleConnectTimer ( ) ; // set connect timer
m_DHKeysPair = std : : make_shared < i2p : : crypto : : DHKeys > ( ) ;
m_DHKeysPair - > GenerateKeys ( ) ;
2014-10-30 20:13:29 +01:00
SendSessionRequest ( ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
2014-11-24 17:18:12 +01:00
void SSUSession : : WaitForConnect ( )
{
2015-11-03 15:15:49 +01:00
if ( ! IsOutgoing ( ) ) // incoming session
2014-11-24 17:18:12 +01:00
ScheduleConnectTimer ( ) ;
else
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: Wait for connect for outgoing session " ) ;
2014-11-24 17:18:12 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : ScheduleConnectTimer ( )
{
2016-08-24 17:21:49 +02:00
m_ConnectTimer . cancel ( ) ;
m_ConnectTimer . expires_from_now ( boost : : posix_time : : seconds ( SSU_CONNECT_TIMEOUT ) ) ;
m_ConnectTimer . async_wait ( std : : bind ( & SSUSession : : HandleConnectTimer ,
2018-01-06 04:48:51 +01:00
shared_from_this ( ) , std : : placeholders : : _1 ) ) ;
2014-10-30 20:13:29 +01:00
}
void SSUSession : : HandleConnectTimer ( const boost : : system : : error_code & ecode )
{
if ( ! ecode )
{
// timeout expired
2021-11-27 20:53:53 +01:00
LogPrint ( eLogWarning , " SSU: Session with " , m_RemoteEndpoint , " was not established after " , SSU_CONNECT_TIMEOUT , " seconds " ) ;
2014-10-30 20:13:29 +01:00
Failed ( ) ;
2018-01-06 04:48:51 +01:00
}
}
2015-12-10 04:17:43 +01:00
void SSUSession : : Introduce ( const i2p : : data : : RouterInfo : : Introducer & introducer ,
std : : shared_ptr < const i2p : : data : : RouterInfo > to )
2014-10-30 20:13:29 +01:00
{
if ( m_State = = eSessionStateUnknown )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
// set connect timer
2016-08-24 17:21:49 +02:00
m_ConnectTimer . expires_from_now ( boost : : posix_time : : seconds ( SSU_CONNECT_TIMEOUT ) ) ;
m_ConnectTimer . async_wait ( std : : bind ( & SSUSession : : HandleConnectTimer ,
2014-11-24 18:26:11 +01:00
shared_from_this ( ) , std : : placeholders : : _1 ) ) ;
2015-12-10 04:17:43 +01:00
}
uint32_t nonce ;
RAND_bytes ( ( uint8_t * ) & nonce , 4 ) ;
2021-09-23 01:09:56 +02:00
auto ts = i2p : : util : : GetSecondsSinceEpoch ( ) ;
m_RelayRequests . emplace ( nonce , std : : make_pair ( to , ts ) ) ;
2015-12-10 04:17:43 +01:00
SendRelayRequest ( introducer , nonce ) ;
2014-10-30 20:13:29 +01:00
}
void SSUSession : : WaitForIntroduction ( )
{
m_State = eSessionStateIntroduced ;
// set connect timer
2016-08-24 17:21:49 +02:00
m_ConnectTimer . expires_from_now ( boost : : posix_time : : seconds ( SSU_CONNECT_TIMEOUT ) ) ;
m_ConnectTimer . async_wait ( std : : bind ( & SSUSession : : HandleConnectTimer ,
2018-01-06 04:48:51 +01:00
shared_from_this ( ) , std : : placeholders : : _1 ) ) ;
2014-10-30 20:13:29 +01:00
}
void SSUSession : : Close ( )
{
2017-03-05 23:08:20 +01:00
SendSessionDestroyed ( ) ;
Reset ( ) ;
2015-02-07 21:25:06 +01:00
m_State = eSessionStateClosed ;
2018-01-06 04:48:51 +01:00
}
2017-03-05 23:08:20 +01:00
void SSUSession : : Reset ( )
{
m_State = eSessionStateUnknown ;
2015-01-13 04:53:35 +01:00
transports . PeerDisconnected ( shared_from_this ( ) ) ;
2015-02-07 23:58:29 +01:00
m_Data . Stop ( ) ;
2016-08-24 17:21:49 +02:00
m_ConnectTimer . cancel ( ) ;
2016-12-30 04:06:33 +01:00
if ( m_SentRelayTag )
2018-01-06 04:48:51 +01:00
{
2016-12-30 04:06:33 +01:00
m_Server . RemoveRelay ( m_SentRelayTag ) ; // relay tag is not valid anymore
2017-03-05 23:08:20 +01:00
m_SentRelayTag = 0 ;
2018-01-06 04:48:51 +01:00
}
2017-03-05 23:08:20 +01:00
m_DHKeysPair = nullptr ;
m_SignedData = nullptr ;
m_IsSessionKey = false ;
}
2014-10-30 20:13:29 +01:00
2015-02-07 02:53:48 +01:00
void SSUSession : : Done ( )
2015-02-06 22:03:47 +01:00
{
2015-02-07 21:25:06 +01:00
GetService ( ) . post ( std : : bind ( & SSUSession : : Failed , shared_from_this ( ) ) ) ;
2015-02-06 22:03:47 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : Established ( )
{
m_State = eSessionStateEstablished ;
2015-11-03 15:15:49 +01:00
m_DHKeysPair = nullptr ;
m_SignedData = nullptr ;
2015-02-08 14:50:05 +01:00
m_Data . Start ( ) ;
2015-01-13 04:53:35 +01:00
transports . PeerConnected ( shared_from_this ( ) ) ;
2015-11-03 15:15:49 +01:00
if ( m_IsPeerTest )
2014-10-30 20:13:29 +01:00
SendPeerTest ( ) ;
2016-12-31 19:52:26 +01:00
if ( m_SentRelayTag )
m_Server . AddRelay ( m_SentRelayTag , shared_from_this ( ) ) ;
2016-08-24 17:21:49 +02:00
m_LastActivityTimestamp = i2p : : util : : GetSecondsSinceEpoch ( ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : Failed ( )
{
if ( m_State ! = eSessionStateFailed )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
m_State = eSessionStateFailed ;
2018-01-06 04:48:51 +01:00
m_Server . DeleteSession ( shared_from_this ( ) ) ;
}
}
2014-10-30 20:13:29 +01:00
2015-06-17 16:47:26 +02:00
void SSUSession : : SendI2NPMessages ( const std : : vector < std : : shared_ptr < I2NPMessage > > & msgs )
2015-01-21 03:05:57 +01:00
{
2018-01-06 04:48:51 +01:00
GetService ( ) . post ( std : : bind ( & SSUSession : : PostI2NPMessages , shared_from_this ( ) , msgs ) ) ;
2015-01-21 03:05:57 +01:00
}
2015-06-17 16:47:26 +02:00
void SSUSession : : PostI2NPMessages ( std : : vector < std : : shared_ptr < I2NPMessage > > msgs )
2015-01-21 03:05:57 +01:00
{
2015-02-09 22:33:52 +01:00
if ( m_State = = eSessionStateEstablished )
{
2016-08-09 00:53:37 +02:00
for ( const auto & it : msgs )
2018-10-11 17:17:14 +02:00
if ( it )
{
2020-03-01 11:25:50 +01:00
if ( it - > GetLength ( ) < = SSU_MAX_I2NP_MESSAGE_SIZE )
2018-10-11 17:17:14 +02:00
m_Data . Send ( it ) ;
else
LogPrint ( eLogError , " SSU: I2NP message of size " , it - > GetLength ( ) , " can't be sent. Dropped " ) ;
}
2015-02-09 22:33:52 +01:00
}
2018-01-06 04:48:51 +01:00
}
2015-01-21 03:05:57 +01:00
2014-10-30 20:13:29 +01:00
void SSUSession : : ProcessData ( uint8_t * buf , size_t len )
{
m_Data . ProcessMessage ( buf , len ) ;
2015-02-15 20:17:55 +01:00
m_IsDataReceived = true ;
2014-10-30 20:13:29 +01:00
}
2015-02-15 20:17:55 +01:00
void SSUSession : : FlushData ( )
{
if ( m_IsDataReceived )
2018-01-06 04:48:51 +01:00
{
2015-02-15 20:17:55 +01:00
m_Data . FlushReceivedMessage ( ) ;
m_IsDataReceived = false ;
2018-01-06 04:48:51 +01:00
}
2015-02-15 20:17:55 +01:00
}
2014-10-30 20:13:29 +01:00
2021-09-23 01:09:56 +02:00
void SSUSession : : CleanUp ( uint64_t ts )
2021-09-22 04:13:34 +02:00
{
2021-09-23 01:09:56 +02:00
m_Data . CleanUp ( ts ) ;
for ( auto it = m_RelayRequests . begin ( ) ; it ! = m_RelayRequests . end ( ) ; )
{
if ( ts > it - > second . second + SSU_CONNECT_TIMEOUT )
2022-05-20 18:56:05 +02:00
it = m_RelayRequests . erase ( it ) ;
2021-09-23 01:09:56 +02:00
else
+ + it ;
}
2021-11-27 21:30:35 +01:00
}
2021-09-22 04:13:34 +02:00
2015-03-26 19:35:20 +01:00
void SSUSession : : ProcessPeerTest ( const uint8_t * buf , size_t len , const boost : : asio : : ip : : udp : : endpoint & senderEndpoint )
2014-10-30 20:13:29 +01:00
{
2015-03-26 20:05:52 +01:00
uint32_t nonce = bufbe32toh ( buf ) ; // 4 bytes
2021-11-12 17:33:51 +01:00
boost : : asio : : ip : : address addr ; // Alice's address
2021-03-20 02:51:45 +01:00
uint16_t port = 0 ; // and port
auto size = ExtractIPAddressAndPort ( buf + 4 , len - 4 , addr , port ) ;
if ( port & & ( size ! = 7 ) & & ( size ! = 19 ) )
2014-10-30 20:13:29 +01:00
{
2021-03-20 02:51:45 +01:00
LogPrint ( eLogWarning , " SSU: Address of " , size - 3 , " bytes not supported " ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2021-03-20 02:51:45 +01:00
const uint8_t * introKey = buf + 4 + size ;
2015-02-26 03:56:51 +01:00
switch ( m_Server . GetPeerTestParticipant ( nonce ) )
2018-01-06 04:48:51 +01:00
{
// existing test
2015-02-26 03:56:51 +01:00
case ePeerTestParticipantAlice1 :
2018-01-06 04:48:51 +01:00
{
2016-11-06 02:08:14 +01:00
if ( m_Server . GetPeerTestSession ( nonce ) = = shared_from_this ( ) ) // Alice-Bob
2015-02-26 19:44:18 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Bob. We are Alice " ) ;
2021-03-23 20:36:57 +01:00
if ( IsV6 ( ) )
{
2021-11-27 21:30:35 +01:00
if ( i2p : : context . GetStatusV6 ( ) = = eRouterStatusTesting )
{
2021-03-23 20:36:57 +01:00
i2p : : context . SetStatusV6 ( eRouterStatusFirewalled ) ;
2021-04-21 02:02:30 +02:00
m_Server . RescheduleIntroducersUpdateTimerV6 ( ) ;
2021-11-27 21:30:35 +01:00
}
}
2021-03-23 20:36:57 +01:00
else if ( i2p : : context . GetStatus ( ) = = eRouterStatusTesting ) // still not OK
2021-11-27 21:30:35 +01:00
{
2015-02-26 19:44:18 +01:00
i2p : : context . SetStatus ( eRouterStatusFirewalled ) ;
2021-03-04 21:55:51 +01:00
m_Server . RescheduleIntroducersUpdateTimer ( ) ;
2021-11-27 21:30:35 +01:00
}
2015-02-26 19:44:18 +01:00
}
2015-02-25 22:39:48 +01:00
else
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: First peer test from Charlie. We are Alice " ) ;
2016-11-06 02:08:14 +01:00
if ( m_State = = eSessionStateEstablished )
2021-11-27 20:53:53 +01:00
LogPrint ( eLogWarning , " SSU: First peer test from Charlie through established session. We are Alice " ) ;
2021-03-23 20:36:57 +01:00
if ( IsV6 ( ) )
i2p : : context . SetStatusV6 ( eRouterStatusOK ) ;
2021-11-27 21:30:35 +01:00
else
2021-03-23 20:36:57 +01:00
i2p : : context . SetStatus ( eRouterStatusOK ) ;
2015-02-26 03:56:51 +01:00
m_Server . UpdatePeerTest ( nonce , ePeerTestParticipantAlice2 ) ;
2016-07-22 18:50:03 +02:00
SendPeerTest ( nonce , senderEndpoint . address ( ) , senderEndpoint . port ( ) , introKey , true , false ) ; // to Charlie
2015-02-25 22:39:48 +01:00
}
2015-02-26 03:56:51 +01:00
break ;
2018-01-06 04:48:51 +01:00
}
2015-02-26 03:56:51 +01:00
case ePeerTestParticipantAlice2 :
{
2016-11-06 02:08:14 +01:00
if ( m_Server . GetPeerTestSession ( nonce ) = = shared_from_this ( ) ) // Alice-Bob
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Bob. We are Alice " ) ;
2015-02-26 03:56:51 +01:00
else
{
// peer test successive
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Second peer test from Charlie. We are Alice " ) ;
2021-03-23 20:36:57 +01:00
if ( IsV6 ( ) )
2021-11-27 21:30:35 +01:00
i2p : : context . SetStatusV6 ( eRouterStatusOK ) ;
else
2021-03-23 20:36:57 +01:00
i2p : : context . SetStatus ( eRouterStatusOK ) ;
2015-02-26 03:56:51 +01:00
m_Server . RemovePeerTest ( nonce ) ;
}
break ;
2018-01-06 04:48:51 +01:00
}
case ePeerTestParticipantBob :
2014-10-30 20:13:29 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Charlie. We are Bob " ) ;
2015-03-26 21:10:52 +01:00
auto session = m_Server . GetPeerTestSession ( nonce ) ; // session with Alice from PeerTest
if ( session & & session - > m_State = = eSessionStateEstablished )
2021-06-16 01:09:36 +02:00
{
const auto & ep = session - > GetRemoteEndpoint ( ) ; // Alice's endpoint as known to Bob
session - > SendPeerTest ( nonce , ep . address ( ) , ep . port ( ) , introKey , false , true ) ; // send back to Alice
2021-11-27 21:30:35 +01:00
}
2015-03-26 19:35:20 +01:00
m_Server . RemovePeerTest ( nonce ) ; // nonce has been used
2015-02-26 03:56:51 +01:00
break ;
2014-10-30 20:13:29 +01:00
}
2015-02-26 03:56:51 +01:00
case ePeerTestParticipantCharlie :
2018-01-06 04:48:51 +01:00
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Alice. We are Charlie " ) ;
2016-07-22 18:50:03 +02:00
SendPeerTest ( nonce , senderEndpoint . address ( ) , senderEndpoint . port ( ) , introKey ) ; // to Alice with her actual address
2015-03-26 19:35:20 +01:00
m_Server . RemovePeerTest ( nonce ) ; // nonce has been used
2015-02-26 03:56:51 +01:00
break ;
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
// test not found
2015-02-26 03:56:51 +01:00
case ePeerTestParticipantUnknown :
2014-10-30 20:13:29 +01:00
{
2015-02-26 03:56:51 +01:00
if ( m_State = = eSessionStateEstablished )
2014-10-30 20:13:29 +01:00
{
2015-02-26 03:56:51 +01:00
// new test
if ( port )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Bob. We are Charlie " ) ;
2015-03-26 20:05:52 +01:00
Send ( PAYLOAD_TYPE_PEER_TEST , buf , len ) ; // back to Bob
2021-06-16 01:09:36 +02:00
if ( ! addr . is_unspecified ( ) & & ! i2p : : util : : net : : IsInReservedRange ( addr ) )
2021-11-27 21:30:35 +01:00
{
2021-06-16 01:09:36 +02:00
m_Server . NewPeerTest ( nonce , ePeerTestParticipantCharlie ) ;
SendPeerTest ( nonce , addr , port , introKey ) ; // to Alice with her address received from Bob
2021-11-27 21:30:35 +01:00
}
2015-02-26 03:56:51 +01:00
}
else
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Peer test from Alice. We are Bob " ) ;
2016-07-22 19:08:41 +02:00
auto session = senderEndpoint . address ( ) . is_v4 ( ) ? m_Server . GetRandomEstablishedV4Session ( shared_from_this ( ) ) : m_Server . GetRandomEstablishedV6Session ( shared_from_this ( ) ) ; // Charlie
2015-02-26 03:56:51 +01:00
if ( session )
{
2015-03-26 21:10:52 +01:00
m_Server . NewPeerTest ( nonce , ePeerTestParticipantBob , shared_from_this ( ) ) ;
2018-01-06 04:48:51 +01:00
session - > SendPeerTest ( nonce , senderEndpoint . address ( ) , senderEndpoint . port ( ) , introKey , false ) ; // to Charlie with Alice's actual address
}
2015-02-26 03:56:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
else
2021-11-27 20:53:53 +01:00
LogPrint ( eLogError , " SSU: Unexpected peer test " ) ;
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
void SSUSession : : SendPeerTest ( uint32_t nonce , const boost : : asio : : ip : : address & address , uint16_t port ,
2015-02-25 22:39:48 +01:00
const uint8_t * introKey , bool toAddress , bool sendAddress )
// toAddress is true for Alice<->Chalie communications only
2018-01-06 04:48:51 +01:00
// sendAddress is false if message comes from Alice
2014-10-30 20:13:29 +01:00
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ 80 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
uint8_t iv [ 16 ] ;
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
2014-12-30 15:37:24 +01:00
htobe32buf ( payload , nonce ) ;
2018-01-06 04:48:51 +01:00
payload + = 4 ; // nonce
2015-02-25 22:39:48 +01:00
// address and port
2016-07-22 18:50:03 +02:00
if ( sendAddress )
{
if ( address . is_v4 ( ) )
{
* payload = 4 ;
memcpy ( payload + 1 , address . to_v4 ( ) . to_bytes ( ) . data ( ) , 4 ) ; // our IP V4
}
else if ( address . is_v6 ( ) )
{
2016-09-01 04:47:32 +02:00
* payload = 16 ;
2018-01-06 04:48:51 +01:00
memcpy ( payload + 1 , address . to_v6 ( ) . to_bytes ( ) . data ( ) , 16 ) ; // our IP V6
2016-07-22 18:50:03 +02:00
}
else
* payload = 0 ;
2018-01-06 04:48:51 +01:00
payload + = ( payload [ 0 ] + 1 ) ;
2014-10-30 20:13:29 +01:00
}
else
{
* payload = 0 ;
payload + + ; //size
}
2014-12-30 15:37:24 +01:00
htobe16buf ( payload , port ) ;
2014-10-30 20:13:29 +01:00
payload + = 2 ; // port
2015-02-25 22:39:48 +01:00
// intro key
if ( toAddress )
{
2019-04-08 21:22:42 +02:00
// send our intro key to address instead of its own
2021-03-20 02:51:45 +01:00
auto addr = address . is_v4 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) : // ipv4
i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) ;
2015-02-25 22:39:48 +01:00
if ( addr )
2022-02-06 16:17:35 +01:00
memcpy ( payload , addr - > i , 32 ) ; // intro key
2015-02-25 22:39:48 +01:00
else
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " SSU: SSU is not supported. Can't send peer test " ) ;
2018-01-06 04:48:51 +01:00
}
else
2015-02-25 22:39:48 +01:00
memcpy ( payload , introKey , 32 ) ; // intro key
2014-10-30 20:13:29 +01:00
2018-01-06 04:48:51 +01:00
// send
2015-11-03 15:15:49 +01:00
RAND_bytes ( iv , 16 ) ; // random iv
2014-10-30 20:13:29 +01:00
if ( toAddress )
2018-01-06 04:48:51 +01:00
{
2014-10-30 20:13:29 +01:00
// encrypt message with specified intro key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_PEER_TEST , buf , 80 , introKey , iv , introKey ) ;
2016-07-22 18:50:03 +02:00
boost : : asio : : ip : : udp : : endpoint e ( address , port ) ;
2014-10-30 20:13:29 +01:00
m_Server . Send ( buf , 80 , e ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
else
{
// encrypt message with session key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_PEER_TEST , buf , 80 ) ;
Send ( buf , 80 ) ;
2016-12-24 18:04:39 +01:00
}
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : SendPeerTest ( )
{
2015-02-25 21:26:06 +01:00
// we are Alice
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Sending peer test " ) ;
2021-04-03 03:31:14 +02:00
auto address = IsV6 ( ) ? i2p : : context . GetRouterInfo ( ) . GetSSUV6Address ( ) : i2p : : context . GetRouterInfo ( ) . GetSSUAddress ( true ) ;
2014-10-30 20:13:29 +01:00
if ( ! address )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogInfo , " SSU: SSU is not supported. Can't send peer test " ) ;
2014-10-30 20:13:29 +01:00
return ;
}
2015-11-03 15:15:49 +01:00
uint32_t nonce ;
RAND_bytes ( ( uint8_t * ) & nonce , 4 ) ;
2014-10-30 20:13:29 +01:00
if ( ! nonce ) nonce = 1 ;
2015-11-03 15:15:49 +01:00
m_IsPeerTest = false ;
2016-11-09 18:13:42 +01:00
m_Server . NewPeerTest ( nonce , ePeerTestParticipantAlice1 , shared_from_this ( ) ) ;
2022-02-06 16:17:35 +01:00
SendPeerTest ( nonce , boost : : asio : : ip : : address ( ) , 0 , address - > i , false , false ) ; // address and port always zero for Alice
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : SendKeepAlive ( )
{
if ( m_State = = eSessionStateEstablished )
2018-01-06 04:48:51 +01:00
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ 48 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
uint8_t * payload = buf + sizeof ( SSUHeader ) ;
* payload = 0 ; // flags
payload + + ;
2018-01-06 04:48:51 +01:00
* payload = 0 ; // num fragments
2014-10-30 20:13:29 +01:00
// encrypt message with session key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_DATA , buf , 48 ) ;
Send ( buf , 48 ) ;
2015-12-17 09:09:54 +01:00
LogPrint ( eLogDebug , " SSU: keep-alive sent " ) ;
2016-08-24 17:21:49 +02:00
m_LastActivityTimestamp = i2p : : util : : GetSecondsSinceEpoch ( ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
}
2017-03-05 23:08:20 +01:00
void SSUSession : : SendSessionDestroyed ( )
2014-10-30 20:13:29 +01:00
{
if ( m_IsSessionKey )
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ 48 + 18 ] = { 0 } ;
2014-10-30 20:13:29 +01:00
// encrypt message with session key
FillHeaderAndEncrypt ( PAYLOAD_TYPE_SESSION_DESTROYED , buf , 48 ) ;
2015-02-27 19:07:32 +01:00
try
{
Send ( buf , 48 ) ;
}
catch ( std : : exception & ex )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogWarning , " SSU: Exception while sending session destoroyed: " , ex . what ( ) ) ;
2015-02-27 19:07:32 +01:00
}
2021-11-27 20:53:53 +01:00
LogPrint ( eLogDebug , " SSU: Session destroyed sent " ) ;
2014-10-30 20:13:29 +01:00
}
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : Send ( uint8_t type , const uint8_t * payload , size_t len )
{
2017-01-08 17:09:33 +01:00
uint8_t buf [ SSU_MTU_V4 + 18 ] = { 0 } ;
2018-01-06 04:48:51 +01:00
size_t msgSize = len + sizeof ( SSUHeader ) ;
2015-03-25 14:04:19 +01:00
size_t paddingSize = msgSize & 0x0F ; // %16
2015-03-18 18:30:38 +01:00
if ( paddingSize > 0 ) msgSize + = ( 16 - paddingSize ) ;
2014-10-30 20:13:29 +01:00
if ( msgSize > SSU_MTU_V4 )
{
2021-11-27 20:53:53 +01:00
LogPrint ( eLogWarning , " SSU: Payload size " , msgSize , " exceeds MTU " ) ;
2014-10-30 20:13:29 +01:00
return ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
memcpy ( buf + sizeof ( SSUHeader ) , payload , len ) ;
// encrypt message with session key
FillHeaderAndEncrypt ( type , buf , msgSize ) ;
Send ( buf , msgSize ) ;
2018-01-06 04:48:51 +01:00
}
2014-10-30 20:13:29 +01:00
void SSUSession : : Send ( const uint8_t * buf , size_t size )
{
m_NumSentBytes + = size ;
2015-03-17 00:33:59 +01:00
i2p : : transport : : transports . UpdateSentBytes ( size ) ;
2014-10-30 20:13:29 +01:00
m_Server . Send ( buf , size , m_RemoteEndpoint ) ;
2018-01-06 04:48:51 +01:00
}
2021-03-19 01:11:24 +01:00
size_t SSUSession : : ExtractIPAddressAndPort ( const uint8_t * buf , size_t len , boost : : asio : : ip : : address & ip , uint16_t & port )
{
if ( ! len ) return 0 ;
uint8_t size = * buf ;
size_t s = 1 + size + 2 ; // size + address + port
2021-11-27 21:30:35 +01:00
if ( len < s )
2021-03-19 01:11:24 +01:00
{
LogPrint ( eLogWarning , " SSU: Address is too short " , len ) ;
port = 0 ;
return len ;
2021-11-27 21:30:35 +01:00
}
2021-03-19 01:11:24 +01:00
buf + + ; // size
if ( size = = 4 )
{
boost : : asio : : ip : : address_v4 : : bytes_type bytes ;
memcpy ( bytes . data ( ) , buf , 4 ) ;
ip = boost : : asio : : ip : : address_v4 ( bytes ) ;
}
else if ( size = = 16 )
{
boost : : asio : : ip : : address_v6 : : bytes_type bytes ;
memcpy ( bytes . data ( ) , buf , 16 ) ;
ip = boost : : asio : : ip : : address_v6 ( bytes ) ;
2021-11-27 21:30:35 +01:00
}
2021-03-19 01:11:24 +01:00
else
2021-10-08 11:31:47 +02:00
LogPrint ( eLogWarning , " SSU: Address size " , int ( size ) , " is not supported " ) ;
2021-03-19 01:11:24 +01:00
buf + = size ;
port = bufbe16toh ( buf ) ;
return s ;
2021-11-27 21:30:35 +01:00
}
2014-10-30 20:13:29 +01:00
}
}