forked from Green-Sky/tomato
Green Sky
b2ae9530a4
f1df709b87 feat: add ngc events 1b6c907235 refactor: Make event dispatch ordered by receive time. b7f9367f6f test: Upgrade cppcheck, fix some warnings. 766e62bc89 chore: Use `pkg_search_module` directly in cmake. 00ff078f91 cleanup: Use target_link_libraries directly in cmake. c58928cc89 chore: Add `IMPORTED_TARGET` to pkg-config packages. 895a6af122 cleanup: Remove NaCl support. 41dfb1c1c0 fix: unpack enum function names in event impl generator 447666d1a1 chore: Disable targets for cross-compilation. 572924e924 chore: Build a docker image with coverage info in it. 415cb78f5e cleanup: Some portability/warning fixes for Windows builds. 425216d9ec fix: Correct a use-after-free and fix some memory leaks. 4b1cfa3e08 refactor: Change all enum-like `#define` sequences into enums. d3c2704fa9 chore: Fix make_single_file to support core-only. 0ce46b644e refactor: Change the `TCP_PACKET_*` defines into an enum. 22cd38ad50 adopt event impl generation tool to #2392 f31ea1088a add the event impl generation tool 4e603bb613 refactor: Use `enum-from-int` rule from tokstyle. 19d8f180d6 chore: Update github actions `uses`. 6a895be0c7 test: Make esp32 build actually try to instantiate tox. 65d09c9bfb cleanup: Remove test net support. REVERT: e29e185c03 feat: add ngc events git-subtree-dir: external/toxcore/c-toxcore git-subtree-split: f1df709b8792da4c0e946d826b11df77d565064d
418 lines
14 KiB
C
418 lines
14 KiB
C
/* SPDX-License-Identifier: GPL-3.0-or-later
|
|
* Copyright © 2016-2018 The TokTok team.
|
|
* Copyright © 2013 Tox project.
|
|
*/
|
|
|
|
/**
|
|
* Functions for the core network crypto.
|
|
*/
|
|
#ifndef C_TOXCORE_TOXCORE_NET_CRYPTO_H
|
|
#define C_TOXCORE_TOXCORE_NET_CRYPTO_H
|
|
|
|
#include <pthread.h>
|
|
|
|
#include "DHT.h"
|
|
#include "LAN_discovery.h"
|
|
#include "TCP_connection.h"
|
|
#include "logger.h"
|
|
|
|
/*** Crypto payloads. */
|
|
|
|
/*** Ranges. */
|
|
|
|
/** Packets in this range are reserved for net_crypto events_alloc use. */
|
|
#define PACKET_ID_RANGE_RESERVED_START 0
|
|
#define PACKET_ID_RANGE_RESERVED_END 15
|
|
/** Packets in this range are reserved for Messenger use. */
|
|
#define PACKET_ID_RANGE_LOSSLESS_START 16
|
|
#define PACKET_ID_RANGE_LOSSLESS_NORMAL_START 16
|
|
#define PACKET_ID_RANGE_LOSSLESS_NORMAL_END 159
|
|
/** Packets in this range can be used for anything. */
|
|
#define PACKET_ID_RANGE_LOSSLESS_CUSTOM_START 160
|
|
#define PACKET_ID_RANGE_LOSSLESS_CUSTOM_END 191
|
|
#define PACKET_ID_RANGE_LOSSLESS_END 191
|
|
/** Packets in this range are reserved for AV use. */
|
|
#define PACKET_ID_RANGE_LOSSY_START 192
|
|
#define PACKET_ID_RANGE_LOSSY_AV_START 192
|
|
#define PACKET_ID_RANGE_LOSSY_AV_SIZE 8
|
|
#define PACKET_ID_RANGE_LOSSY_AV_END 199
|
|
/** Packets in this range can be used for anything. */
|
|
#define PACKET_ID_RANGE_LOSSY_CUSTOM_START 200
|
|
#define PACKET_ID_RANGE_LOSSY_CUSTOM_END 254
|
|
#define PACKET_ID_RANGE_LOSSY_END 254
|
|
|
|
/*** Messages. */
|
|
|
|
typedef enum Packet_Id {
|
|
PACKET_ID_PADDING = 0, // Denotes padding
|
|
PACKET_ID_REQUEST = 1, // Used to request unreceived packets
|
|
PACKET_ID_KILL = 2, // Used to kill connection
|
|
|
|
PACKET_ID_ONLINE = 24,
|
|
PACKET_ID_OFFLINE = 25,
|
|
PACKET_ID_NICKNAME = 48,
|
|
PACKET_ID_STATUSMESSAGE = 49,
|
|
PACKET_ID_USERSTATUS = 50,
|
|
PACKET_ID_TYPING = 51,
|
|
PACKET_ID_MESSAGE = 64,
|
|
PACKET_ID_ACTION = 65, // PACKET_ID_MESSAGE + MESSAGE_ACTION
|
|
PACKET_ID_MSI = 69, // Used by AV to setup calls and etc
|
|
PACKET_ID_FILE_SENDREQUEST = 80,
|
|
PACKET_ID_FILE_CONTROL = 81,
|
|
PACKET_ID_FILE_DATA = 82,
|
|
PACKET_ID_INVITE_GROUPCHAT = 95,
|
|
PACKET_ID_INVITE_CONFERENCE = 96,
|
|
PACKET_ID_ONLINE_PACKET = 97,
|
|
PACKET_ID_DIRECT_CONFERENCE = 98,
|
|
PACKET_ID_MESSAGE_CONFERENCE = 99,
|
|
PACKET_ID_REJOIN_CONFERENCE = 100,
|
|
PACKET_ID_LOSSY_CONFERENCE = 199,
|
|
} Packet_Id;
|
|
|
|
/** Maximum size of receiving and sending packet buffers. */
|
|
#define CRYPTO_PACKET_BUFFER_SIZE 32768 // Must be a power of 2
|
|
|
|
/** Minimum packet rate per second. */
|
|
#define CRYPTO_PACKET_MIN_RATE 4.0
|
|
|
|
/** Minimum packet queue max length. */
|
|
#define CRYPTO_MIN_QUEUE_LENGTH 64
|
|
|
|
/** Maximum total size of packets that net_crypto sends. */
|
|
#define MAX_CRYPTO_PACKET_SIZE (uint16_t)1400
|
|
|
|
#define CRYPTO_DATA_PACKET_MIN_SIZE (uint16_t)(1 + sizeof(uint16_t) + (sizeof(uint32_t) + sizeof(uint32_t)) + CRYPTO_MAC_SIZE)
|
|
|
|
/** Max size of data in packets */
|
|
#define MAX_CRYPTO_DATA_SIZE (uint16_t)(MAX_CRYPTO_PACKET_SIZE - CRYPTO_DATA_PACKET_MIN_SIZE)
|
|
|
|
/** Interval in ms between sending cookie request/handshake packets. */
|
|
#define CRYPTO_SEND_PACKET_INTERVAL 1000
|
|
|
|
/**
|
|
* The maximum number of times we try to send the cookie request and handshake
|
|
* before giving up.
|
|
*/
|
|
#define MAX_NUM_SENDPACKET_TRIES 8
|
|
|
|
/** The timeout of no received UDP packets before the direct UDP connection is considered dead. */
|
|
#define UDP_DIRECT_TIMEOUT 8
|
|
|
|
#define MAX_TCP_CONNECTIONS 64
|
|
#define MAX_TCP_RELAYS_PEER 4
|
|
|
|
/** All packets will be padded a number of bytes based on this number. */
|
|
#define CRYPTO_MAX_PADDING 8
|
|
|
|
/**
|
|
* Base current transfer speed on last CONGESTION_QUEUE_ARRAY_SIZE number of points taken
|
|
* at the dT defined in net_crypto.c
|
|
*/
|
|
#define CONGESTION_QUEUE_ARRAY_SIZE 12
|
|
#define CONGESTION_LAST_SENT_ARRAY_SIZE (CONGESTION_QUEUE_ARRAY_SIZE * 2)
|
|
|
|
/** Default connection ping in ms. */
|
|
#define DEFAULT_PING_CONNECTION 1000
|
|
#define DEFAULT_TCP_PING_CONNECTION 500
|
|
|
|
typedef struct Net_Crypto Net_Crypto;
|
|
|
|
non_null() const uint8_t *nc_get_self_public_key(const Net_Crypto *c);
|
|
non_null() const uint8_t *nc_get_self_secret_key(const Net_Crypto *c);
|
|
non_null() TCP_Connections *nc_get_tcp_c(const Net_Crypto *c);
|
|
non_null() DHT *nc_get_dht(const Net_Crypto *c);
|
|
|
|
typedef struct New_Connection {
|
|
IP_Port source;
|
|
uint8_t public_key[CRYPTO_PUBLIC_KEY_SIZE]; /* The real public key of the peer. */
|
|
uint8_t dht_public_key[CRYPTO_PUBLIC_KEY_SIZE]; /* The dht public key of the peer. */
|
|
uint8_t recv_nonce[CRYPTO_NONCE_SIZE]; /* Nonce of received packets. */
|
|
uint8_t peersessionpublic_key[CRYPTO_PUBLIC_KEY_SIZE]; /* The public key of the peer. */
|
|
uint8_t *cookie;
|
|
uint8_t cookie_length;
|
|
} New_Connection;
|
|
|
|
typedef int connection_status_cb(void *object, int id, bool status, void *userdata);
|
|
typedef int connection_data_cb(void *object, int id, const uint8_t *data, uint16_t length, void *userdata);
|
|
typedef int connection_lossy_data_cb(void *object, int id, const uint8_t *data, uint16_t length, void *userdata);
|
|
typedef void dht_pk_cb(void *data, int32_t number, const uint8_t *dht_public_key, void *userdata);
|
|
typedef int new_connection_cb(void *object, const New_Connection *n_c);
|
|
|
|
/** @brief Set function to be called when someone requests a new connection to us.
|
|
*
|
|
* The set function should return -1 on failure and 0 on success.
|
|
*
|
|
* n_c is only valid for the duration of the function call.
|
|
*/
|
|
non_null()
|
|
void new_connection_handler(Net_Crypto *c, new_connection_cb *new_connection_callback, void *object);
|
|
|
|
/** @brief Accept a crypto connection.
|
|
*
|
|
* return -1 on failure.
|
|
* return connection id on success.
|
|
*/
|
|
non_null()
|
|
int accept_crypto_connection(Net_Crypto *c, const New_Connection *n_c);
|
|
|
|
/** @brief Create a crypto connection.
|
|
* If one to that real public key already exists, return it.
|
|
*
|
|
* return -1 on failure.
|
|
* return connection id on success.
|
|
*/
|
|
non_null()
|
|
int new_crypto_connection(Net_Crypto *c, const uint8_t *real_public_key, const uint8_t *dht_public_key);
|
|
|
|
/** @brief Set the direct ip of the crypto connection.
|
|
*
|
|
* Connected is 0 if we are not sure we are connected to that person, 1 if we are sure.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int set_direct_ip_port(Net_Crypto *c, int crypt_connection_id, const IP_Port *ip_port, bool connected);
|
|
|
|
/** @brief Set function to be called when connection with crypt_connection_id goes connects/disconnects.
|
|
*
|
|
* The set function should return -1 on failure and 0 on success.
|
|
* Note that if this function is set, the connection will clear itself on disconnect.
|
|
* Object and id will be passed to this function untouched.
|
|
* status is 1 if the connection is going online, 0 if it is going offline.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int connection_status_handler(const Net_Crypto *c, int crypt_connection_id,
|
|
connection_status_cb *connection_status_callback, void *object, int id);
|
|
|
|
/** @brief Set function to be called when connection with crypt_connection_id receives a lossless data packet of length.
|
|
*
|
|
* The set function should return -1 on failure and 0 on success.
|
|
* Object and id will be passed to this function untouched.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int connection_data_handler(const Net_Crypto *c, int crypt_connection_id,
|
|
connection_data_cb *connection_data_callback, void *object, int id);
|
|
|
|
|
|
/** @brief Set function to be called when connection with crypt_connection_id receives a lossy data packet of length.
|
|
*
|
|
* The set function should return -1 on failure and 0 on success.
|
|
* Object and id will be passed to this function untouched.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int connection_lossy_data_handler(const Net_Crypto *c, int crypt_connection_id,
|
|
connection_lossy_data_cb *connection_lossy_data_callback, void *object, int id);
|
|
|
|
/** @brief Set the function for this friend that will be callbacked with object and number if
|
|
* the friend sends us a different dht public key than we have associated to him.
|
|
*
|
|
* If this function is called, the connection should be recreated with the new public key.
|
|
*
|
|
* object and number will be passed as argument to this function.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int nc_dht_pk_callback(const Net_Crypto *c, int crypt_connection_id,
|
|
dht_pk_cb *function, void *object, uint32_t number);
|
|
|
|
/**
|
|
* @return the number of packet slots left in the sendbuffer.
|
|
* @retval 0 if failure.
|
|
*/
|
|
non_null()
|
|
uint32_t crypto_num_free_sendqueue_slots(const Net_Crypto *c, int crypt_connection_id);
|
|
|
|
/**
|
|
* @retval 1 if max speed was reached for this connection (no more data can be physically through the pipe).
|
|
* @retval 0 if it wasn't reached.
|
|
*/
|
|
non_null()
|
|
bool max_speed_reached(Net_Crypto *c, int crypt_connection_id);
|
|
|
|
/** @brief Sends a lossless cryptopacket.
|
|
*
|
|
* return -1 if data could not be put in packet queue.
|
|
* return positive packet number if data was put into the queue.
|
|
*
|
|
* The first byte of data must be in the PACKET_ID_RANGE_LOSSLESS.
|
|
*
|
|
* congestion_control: should congestion control apply to this packet?
|
|
*/
|
|
non_null()
|
|
int64_t write_cryptpacket(Net_Crypto *c, int crypt_connection_id,
|
|
const uint8_t *data, uint16_t length, bool congestion_control);
|
|
|
|
/** @brief Check if packet_number was received by the other side.
|
|
*
|
|
* packet_number must be a valid packet number of a packet sent on this connection.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*
|
|
* Note: The condition `buffer_end - buffer_start < packet_number - buffer_start` is
|
|
* a trick which handles situations `buffer_end >= buffer_start` and
|
|
* `buffer_end < buffer_start` (when buffer_end overflowed) both correctly.
|
|
*
|
|
* It CANNOT be simplified to `packet_number < buffer_start`, as it will fail
|
|
* when `buffer_end < buffer_start`.
|
|
*/
|
|
non_null()
|
|
int cryptpacket_received(const Net_Crypto *c, int crypt_connection_id, uint32_t packet_number);
|
|
|
|
/** @brief Sends a lossy cryptopacket.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*
|
|
* The first byte of data must be in the PACKET_ID_RANGE_LOSSY.
|
|
*/
|
|
non_null()
|
|
int send_lossy_cryptpacket(Net_Crypto *c, int crypt_connection_id, const uint8_t *data, uint16_t length);
|
|
|
|
/** @brief Add a tcp relay, associating it to a crypt_connection_id.
|
|
*
|
|
* return 0 if it was added.
|
|
* return -1 if it wasn't.
|
|
*/
|
|
non_null()
|
|
int add_tcp_relay_peer(Net_Crypto *c, int crypt_connection_id, const IP_Port *ip_port,
|
|
const uint8_t *public_key);
|
|
|
|
/** @brief Add a tcp relay to the array.
|
|
*
|
|
* return 0 if it was added.
|
|
* return -1 if it wasn't.
|
|
*/
|
|
non_null()
|
|
int add_tcp_relay(Net_Crypto *c, const IP_Port *ip_port, const uint8_t *public_key);
|
|
|
|
/** @brief Return a random TCP connection number for use in send_tcp_onion_request.
|
|
*
|
|
* TODO(irungentoo): This number is just the index of an array that the elements can
|
|
* change without warning.
|
|
*
|
|
* return TCP connection number on success.
|
|
* return -1 on failure.
|
|
*/
|
|
non_null()
|
|
int get_random_tcp_con_number(Net_Crypto *c);
|
|
|
|
/** @brief Put IP_Port of a random onion TCP connection in ip_port.
|
|
*
|
|
* return true on success.
|
|
* return false on failure.
|
|
*/
|
|
non_null()
|
|
bool get_random_tcp_conn_ip_port(Net_Crypto *c, IP_Port *ip_port);
|
|
|
|
/** @brief Send an onion packet via the TCP relay corresponding to tcp_connections_number.
|
|
*
|
|
* return 0 on success.
|
|
* return -1 on failure.
|
|
*/
|
|
non_null()
|
|
int send_tcp_onion_request(Net_Crypto *c, unsigned int tcp_connections_number,
|
|
const uint8_t *data, uint16_t length);
|
|
|
|
/**
|
|
* Send a forward request to the TCP relay with IP_Port tcp_forwarder,
|
|
* requesting to forward data via a chain of dht nodes starting with dht_node.
|
|
* A chain_length of 0 means that dht_node is the final destination of data.
|
|
*
|
|
* return 0 on success.
|
|
* return -1 on failure.
|
|
*/
|
|
non_null()
|
|
int send_tcp_forward_request(const Logger *logger, Net_Crypto *c, const IP_Port *tcp_forwarder, const IP_Port *dht_node,
|
|
const uint8_t *chain_keys, uint16_t chain_length,
|
|
const uint8_t *data, uint16_t data_length);
|
|
|
|
/** @brief Copy a maximum of num random TCP relays we are connected to to tcp_relays.
|
|
*
|
|
* NOTE that the family of the copied ip ports will be set to TCP_INET or TCP_INET6.
|
|
*
|
|
* return number of relays copied to tcp_relays on success.
|
|
* return 0 on failure.
|
|
*/
|
|
non_null()
|
|
unsigned int copy_connected_tcp_relays(Net_Crypto *c, Node_format *tcp_relays, uint16_t num);
|
|
|
|
/**
|
|
* Copy a maximum of `max_num` TCP relays we are connected to starting at the index in the TCP relay array
|
|
* for `tcp_c` designated by `idx`. If idx is greater than the array length a modulo operation is performed.
|
|
*
|
|
* Returns the number of relays successfully copied.
|
|
*/
|
|
non_null()
|
|
uint32_t copy_connected_tcp_relays_index(Net_Crypto *c, Node_format *tcp_relays, uint16_t num, uint32_t idx);
|
|
|
|
/** @brief Kill a crypto connection.
|
|
*
|
|
* return -1 on failure.
|
|
* return 0 on success.
|
|
*/
|
|
non_null()
|
|
int crypto_kill(Net_Crypto *c, int crypt_connection_id);
|
|
|
|
/**
|
|
* @retval true if connection is valid, false otherwise
|
|
*
|
|
* sets direct_connected to 1 if connection connects directly to other, 0 if it isn't.
|
|
* sets online_tcp_relays to the number of connected tcp relays this connection has.
|
|
*/
|
|
non_null(1, 3) nullable(4)
|
|
bool crypto_connection_status(
|
|
const Net_Crypto *c, int crypt_connection_id, bool *direct_connected, uint32_t *online_tcp_relays);
|
|
|
|
/** @brief Generate our public and private keys.
|
|
* Only call this function the first time the program starts.
|
|
*/
|
|
non_null()
|
|
void new_keys(Net_Crypto *c);
|
|
|
|
/** @brief Save the public and private keys to the keys array.
|
|
* Length must be CRYPTO_PUBLIC_KEY_SIZE + CRYPTO_SECRET_KEY_SIZE.
|
|
*
|
|
* TODO(irungentoo): Save only secret key.
|
|
*/
|
|
non_null()
|
|
void save_keys(const Net_Crypto *c, uint8_t *keys);
|
|
|
|
/** @brief Load the secret key.
|
|
* Length must be CRYPTO_SECRET_KEY_SIZE.
|
|
*/
|
|
non_null()
|
|
void load_secret_key(Net_Crypto *c, const uint8_t *sk);
|
|
|
|
/** @brief Create new instance of Net_Crypto.
|
|
* Sets all the global connection variables to their default values.
|
|
*/
|
|
non_null()
|
|
Net_Crypto *new_net_crypto(const Logger *log, const Memory *mem, const Random *rng, const Network *ns,
|
|
Mono_Time *mono_time, DHT *dht, const TCP_Proxy_Info *proxy_info);
|
|
|
|
/** return the optimal interval in ms for running do_net_crypto. */
|
|
non_null()
|
|
uint32_t crypto_run_interval(const Net_Crypto *c);
|
|
|
|
/** Main loop. */
|
|
non_null(1) nullable(2)
|
|
void do_net_crypto(Net_Crypto *c, void *userdata);
|
|
|
|
nullable(1)
|
|
void kill_net_crypto(Net_Crypto *c);
|
|
|
|
#endif
|