3b6bb15e86
d9b8fa6098d fix: Fake broadcast address for 127.x.x.x aa649165a57 chore: Add code for future netprof TCP testing 9e5693de5ac chore: add to_string functions for netprof enums 52d915e6a90 cleanup: Heap allocate network profile objects 80fabd4a729 feat: Implement Tox network profiler 05abe083cb6 cleanup: Some random cleanups, mostly related to mem. 5cca24513b8 cleanup: Check that onion IP/Port packing worked. e092ecd1244 cleanup: Use tox memory allocator in some more places. 3cfe41c7587 fix: Avoid `memcpy`-ing structs into onion ping id data. e32ac001938 fix: Add more information on why the frame was not sent. ab887003687 fix: Allow TCP connections to fail `connect` calls. 7603170e663 refactor: Use tox memory in group connection allocations. 5bd8a85eb89 cleanup: Align internal logger with external on type of source line. e9bf524d9e1 cleanup: Add missing `#include` to sort_test.cc. d10c966b998 feat: Add `to_string` functions for toxencryptsave errors. 7bfd0dc8003 docs: Update the docs for group join functions 380dde9f2ae test: Add more logging to TCP connection constructor. 0f12f384c8c cleanup: Reduce stack frame sizes to below 4096 bytes. bc43cec0626 chore: Happy new year! fbe78f1702e cleanup: Add a `TOX_HIDE_DEPRECATED` check to hide deprecated symbols. 44d9da07e77 refactor: Use tox memory for group moderation/pack allocations. 7f26d520168 refactor: Use tox memory in group chats allocations. 2f62f3d0e77 refactor: Use tox Memory for group allocations. 8a968162041 chore: Add dispatch/events headers to bazel export. 2bbfb35abf6 docs: Output the error code string instead of int. in toxav logging d55d0e4eaef cleanup: Remove redundant code for checking if group exists 2a6dc643338 chore: Upgrade dependencies for websockify. fc0650601c1 fix: Allow peers to reconnect to group chats using a password git-subtree-dir: external/toxcore/c-toxcore git-subtree-split: d9b8fa6098de6c074038b6664d2572627540b148
50 lines
1.6 KiB
C
50 lines
1.6 KiB
C
/* SPDX-License-Identifier: GPL-3.0-or-later
|
|
* Copyright © 2019-2025 The TokTok team.
|
|
*/
|
|
#include "timed_auth.h"
|
|
|
|
#include <string.h>
|
|
|
|
#include "attributes.h"
|
|
#include "ccompat.h"
|
|
#include "crypto_core.h"
|
|
#include "mono_time.h"
|
|
|
|
non_null(1, 6) nullable(4)
|
|
static void create_timed_auth_to_hash(const Mono_Time *mono_time, uint16_t timeout, bool previous, const uint8_t *data,
|
|
uint16_t length, uint8_t *to_hash)
|
|
{
|
|
const uint64_t t = (mono_time_get(mono_time) / timeout) - (previous ? 1 : 0);
|
|
memcpy(to_hash, &t, sizeof(t));
|
|
|
|
if (data != nullptr) {
|
|
memcpy(to_hash + sizeof(t), data, length);
|
|
}
|
|
}
|
|
|
|
void generate_timed_auth(const Mono_Time *mono_time, uint16_t timeout, const uint8_t *key,
|
|
const uint8_t *data, uint16_t length, uint8_t *timed_auth)
|
|
{
|
|
const uint16_t to_hash_size = sizeof(uint64_t) + length;
|
|
VLA(uint8_t, to_hash, to_hash_size);
|
|
create_timed_auth_to_hash(mono_time, timeout, false, data, length, to_hash);
|
|
crypto_hmac(timed_auth, key, to_hash, to_hash_size);
|
|
}
|
|
|
|
bool check_timed_auth(const Mono_Time *mono_time, uint16_t timeout, const uint8_t *key, const uint8_t *data,
|
|
uint16_t length, const uint8_t *timed_auth)
|
|
{
|
|
const uint16_t to_hash_size = sizeof(uint64_t) + length;
|
|
VLA(uint8_t, to_hash, to_hash_size);
|
|
|
|
for (uint8_t i = 0; i < 2; ++i) {
|
|
create_timed_auth_to_hash(mono_time, timeout, i != 0, data, length, to_hash);
|
|
|
|
if (crypto_hmac_verify(timed_auth, key, to_hash, to_hash_size)) {
|
|
return true;
|
|
}
|
|
}
|
|
|
|
return false;
|
|
}
|