Inicio Explorar Axuda
Iniciar sesión
cpp
/
ZeroTierOne
réplica de https://github.com/zerotier/ZeroTierOne
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Árbore: 0d0039674f
Ramas Etiquetas
ZeroTierOne
/
node
/
Packet.cpp

Packet.cpp 6.0 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166 
  1. /*
    2. 

  2.  * ZeroTier One - Network Virtualization Everywhere
    3. 

  3.  * Copyright (C) 2011-2015  ZeroTier, Inc.
    4. 

  4.  *
    5. 

  5.  * This program is free software: you can redistribute it and/or modify
    6. 

  6.  * it under the terms of the GNU General Public License as published by
    7. 

  7.  * the Free Software Foundation, either version 3 of the License, or
    8. 

  8.  * (at your option) any later version.
    9. 

  9.  *
    10. 

  10.  * This program is distributed in the hope that it will be useful,
    11. 

  11.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    13. 

  13.  * GNU General Public License for more details.
    14. 

  14.  *
    15. 

  15.  * You should have received a copy of the GNU General Public License
    16. 

  16.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
    17. 

  17.  *
    18. 

  18.  * --
    19. 

  19.  *
    20. 

  20.  * ZeroTier may be used and distributed under the terms of the GPLv3, which
    21. 

  21.  * are available at: http://www.gnu.org/licenses/gpl-3.0.html
    22. 

  22.  *
    23. 

  23.  * If you would like to embed ZeroTier into a commercial application or
    24. 

  24.  * redistribute it in a modified binary form, please contact ZeroTier Networks
    25. 

  25.  * LLC. Start here: http://www.zerotier.com/
    26. 

  26.  */
    27. 

  27. 

  28. #include "Packet.hpp"
    29. 

  29. 

  30. namespace ZeroTier {
    31. 

  31. 

  32. const unsigned char Packet::ZERO_KEY[32] = { 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0 };
    33. 

  33. 

  34. #ifdef ZT_TRACE
    35. 

  35. 

  36. const char *Packet::verbString(Verb v)
    37. 

  37. 	throw()
    38. 

  38. {
    39. 

  39. 	switch(v) {
    40. 

  40. 		case VERB_NOP: return "NOP";
    41. 

  41. 		case VERB_HELLO: return "HELLO";
    42. 

  42. 		case VERB_ERROR: return "ERROR";
    43. 

  43. 		case VERB_OK: return "OK";
    44. 

  44. 		case VERB_WHOIS: return "WHOIS";
    45. 

  45. 		case VERB_RENDEZVOUS: return "RENDEZVOUS";
    46. 

  46. 		case VERB_FRAME: return "FRAME";
    47. 

  47. 		case VERB_EXT_FRAME: return "EXT_FRAME";
    48. 

  48. 		case VERB_P5_MULTICAST_FRAME: return "P5_MULTICAST_FRAME";
    49. 

  49. 		case VERB_MULTICAST_LIKE: return "MULTICAST_LIKE";
    50. 

  50. 		case VERB_NETWORK_MEMBERSHIP_CERTIFICATE: return "NETWORK_MEMBERSHIP_CERTIFICATE";
    51. 

  51. 		case VERB_NETWORK_CONFIG_REQUEST: return "NETWORK_CONFIG_REQUEST";
    52. 

  52. 		case VERB_NETWORK_CONFIG_REFRESH: return "NETWORK_CONFIG_REFRESH";
    53. 

  53. 		case VERB_MULTICAST_GATHER: return "MULTICAST_GATHER";
    54. 

  54. 		case VERB_MULTICAST_FRAME: return "MULTICAST_FRAME";
    55. 

  55. 		case VERB_SET_EPHEMERAL_KEY: return "SET_EPHEMERAL_KEY";
    56. 

  56. 		case VERB_PUSH_DIRECT_PATHS: return "PUSH_DIRECT_PATHS";
    57. 

  57. 		case VERB_CIRCUIT_TEST: return "CIRCUIT_TEST";
    58. 

  58. 		case VERB_CIRCUIT_TEST_REPORT: return "CIRCUIT_TEST_REPORT";
    59. 

  59. 	}
    60. 

  60. 	return "(unknown)";
    61. 

  61. }
    62. 

  62. 

  63. const char *Packet::errorString(ErrorCode e)
    64. 

  64. 	throw()
    65. 

  65. {
    66. 

  66. 	switch(e) {
    67. 

  67. 		case ERROR_NONE: return "NONE";
    68. 

  68. 		case ERROR_INVALID_REQUEST: return "INVALID_REQUEST";
    69. 

  69. 		case ERROR_BAD_PROTOCOL_VERSION: return "BAD_PROTOCOL_VERSION";
    70. 

  70. 		case ERROR_OBJ_NOT_FOUND: return "OBJECT_NOT_FOUND";
    71. 

  71. 		case ERROR_IDENTITY_COLLISION: return "IDENTITY_COLLISION";
    72. 

  72. 		case ERROR_UNSUPPORTED_OPERATION: return "UNSUPPORTED_OPERATION";
    73. 

  73. 		case ERROR_NEED_MEMBERSHIP_CERTIFICATE: return "NEED_MEMBERSHIP_CERTIFICATE";
    74. 

  74. 		case ERROR_NETWORK_ACCESS_DENIED_: return "NETWORK_ACCESS_DENIED";
    75. 

  75. 		case ERROR_UNWANTED_MULTICAST: return "UNWANTED_MULTICAST";
    76. 

  76. 	}
    77. 

  77. 	return "(unknown)";
    78. 

  78. }
    79. 

  79. 

  80. #endif // ZT_TRACE
    81. 

  81. 

  82. void Packet::armor(const void *key,bool encryptPayload)
    83. 

  83. {
    84. 

  84. 	unsigned char mangledKey[32];
    85. 

  85. 	unsigned char macKey[32];
    86. 

  86. 	unsigned char mac[16];
    87. 

  87. 	const unsigned int payloadLen = size() - ZT_PACKET_IDX_VERB;
    88. 

  88. 	unsigned char *const payload = field(ZT_PACKET_IDX_VERB,payloadLen);
    89. 

  89. 

  90. 	// Set flag now, since it affects key mangle function
    91. 

  91. 	setCipher(encryptPayload ? ZT_PROTO_CIPHER_SUITE__C25519_POLY1305_SALSA2012 : ZT_PROTO_CIPHER_SUITE__C25519_POLY1305_NONE);
    92. 

  92. 

  93. 	_salsa20MangleKey((const unsigned char *)key,mangledKey);
    94. 

  94. 	Salsa20 s20(mangledKey,256,field(ZT_PACKET_IDX_IV,8),ZT_PROTO_SALSA20_ROUNDS);
    95. 

  95. 

  96. 	// MAC key is always the first 32 bytes of the Salsa20 key stream
    97. 

  97. 	// This is the same construction DJB's NaCl library uses
    98. 

  98. 	s20.encrypt(ZERO_KEY,macKey,sizeof(macKey));
    99. 

  99. 

  100. 	if (encryptPayload)
    101. 

  101. 		s20.encrypt(payload,payload,payloadLen);
    102. 

  102. 

  103. 	Poly1305::compute(mac,payload,payloadLen,macKey);
    104. 

  104. 	memcpy(field(ZT_PACKET_IDX_MAC,8),mac,8);
    105. 

  105. }
    106. 

  106. 

  107. bool Packet::dearmor(const void *key)
    108. 

  108. {
    109. 

  109. 	unsigned char mangledKey[32];
    110. 

  110. 	unsigned char macKey[32];
    111. 

  111. 	unsigned char mac[16];
    112. 

  112. 	const unsigned int payloadLen = size() - ZT_PACKET_IDX_VERB;
    113. 

  113. 	unsigned char *const payload = field(ZT_PACKET_IDX_VERB,payloadLen);
    114. 

  114. 	unsigned int cs = cipher();
    115. 

  115. 

  116. 	if ((cs == ZT_PROTO_CIPHER_SUITE__C25519_POLY1305_NONE)||(cs == ZT_PROTO_CIPHER_SUITE__C25519_POLY1305_SALSA2012)) {
    117. 

  117. 		_salsa20MangleKey((const unsigned char *)key,mangledKey);
    118. 

  118. 		Salsa20 s20(mangledKey,256,field(ZT_PACKET_IDX_IV,8),ZT_PROTO_SALSA20_ROUNDS);
    119. 

  119. 

  120. 		s20.encrypt(ZERO_KEY,macKey,sizeof(macKey));
    121. 

  121. 		Poly1305::compute(mac,payload,payloadLen,macKey);
    122. 

  122. 		if (!Utils::secureEq(mac,field(ZT_PACKET_IDX_MAC,8),8))
    123. 

  123. 			return false;
    124. 

  124. 

  125. 		if (cs == ZT_PROTO_CIPHER_SUITE__C25519_POLY1305_SALSA2012)
    126. 

  126. 			s20.decrypt(payload,payload,payloadLen);
    127. 

  127. 

  128. 		return true;
    129. 

  129. 	} else return false; // unrecognized cipher suite
    130. 

  130. }
    131. 

  131. 

  132. bool Packet::compress()
    133. 

  133. {
    134. 

  134. 	unsigned char buf[ZT_PROTO_MAX_PACKET_LENGTH * 2];
    135. 

  135. 	if ((!compressed())&&(size() > (ZT_PACKET_IDX_PAYLOAD + 32))) {
    136. 

  136. 		int pl = (int)(size() - ZT_PACKET_IDX_PAYLOAD);
    137. 

  137. 		int cl = LZ4_compress((const char *)field(ZT_PACKET_IDX_PAYLOAD,(unsigned int)pl),(char *)buf,pl);
    138. 

  138. 		if ((cl > 0)&&(cl < pl)) {
    139. 

  139. 			(*this)[ZT_PACKET_IDX_VERB] |= (char)ZT_PROTO_VERB_FLAG_COMPRESSED;
    140. 

  140. 			setSize((unsigned int)cl + ZT_PACKET_IDX_PAYLOAD);
    141. 

  141. 			memcpy(field(ZT_PACKET_IDX_PAYLOAD,(unsigned int)cl),buf,cl);
    142. 

  142. 			return true;
    143. 

  143. 		}
    144. 

  144. 	}
    145. 

  145. 	(*this)[ZT_PACKET_IDX_VERB] &= (char)(~ZT_PROTO_VERB_FLAG_COMPRESSED);
    146. 

  146. 	return false;
    147. 

  147. }
    148. 

  148. 

  149. bool Packet::uncompress()
    150. 

  150. {
    151. 

  151. 	unsigned char buf[ZT_PROTO_MAX_PACKET_LENGTH];
    152. 

  152. 	if ((compressed())&&(size() >= ZT_PROTO_MIN_PACKET_LENGTH)) {
    153. 

  153. 		if (size() > ZT_PACKET_IDX_PAYLOAD) {
    154. 

  154. 			unsigned int compLen = size() - ZT_PACKET_IDX_PAYLOAD;
    155. 

  155. 			int ucl = LZ4_decompress_safe((const char *)field(ZT_PACKET_IDX_PAYLOAD,compLen),(char *)buf,compLen,sizeof(buf));
    156. 

  156. 			if ((ucl > 0)&&(ucl <= (int)(capacity() - ZT_PACKET_IDX_PAYLOAD))) {
    157. 

  157. 				setSize((unsigned int)ucl + ZT_PACKET_IDX_PAYLOAD);
    158. 

  158. 				memcpy(field(ZT_PACKET_IDX_PAYLOAD,(unsigned int)ucl),buf,ucl);
    159. 

  159. 			} else return false;
    160. 

  160. 		}
    161. 

  161. 		(*this)[ZT_PACKET_IDX_VERB] &= (char)(~ZT_PROTO_VERB_FLAG_COMPRESSED);
    162. 

  162. 	}
    163. 

  163. 	return true;
    164. 

  164. }
    165. 

  165. 

  166. } // namespace ZeroTier
    167.