diff --git a/Cargo.lock b/Cargo.lock index 5247a424..21706800 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -31,9 +31,9 @@ dependencies = [ [[package]] name = "async-trait" -version = "0.1.52" +version = "0.1.53" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "061a7acccaa286c011ddc30970520b98fa40e00c9d644633fb26b5fc63a265e3" +checksum = "ed6aa3524a2dfcf9fe180c51eae2b58738348d819517ceadf95789c51fff7600" dependencies = [ "proc-macro2", "quote", @@ -42,12 +42,11 @@ dependencies = [ [[package]] name = "atomic-polyfill" -version = "0.1.6" +version = "0.1.8" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "ee6adc1648f03fbc1bc1b5cf0f2fdfb5edbc96215b711edcfe6ce2641ef9b347" +checksum = "e14bf7b4f565e5e717d7a7a65b2a05c0b8c96e4db636d6f780f03b15108cdd1b" dependencies = [ "critical-section", - "riscv-target", ] [[package]] @@ -120,7 +119,7 @@ dependencies = [ [[package]] name = "bromine" -version = "0.20.2" +version = "0.21.0" dependencies = [ "async-trait", "bincode", @@ -301,9 +300,9 @@ dependencies = [ [[package]] name = "critical-section" -version = "0.2.5" +version = "0.2.7" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "01e191a5a6f6edad9b679777ef6b6c0f2bdd4a333f2ecb8f61c3e28109a03d70" +checksum = "95da181745b56d4bd339530ec393508910c909c784e8962d15d722bacf0bcbcd" dependencies = [ "bare-metal 1.0.0", "cfg-if", @@ -313,9 +312,9 @@ dependencies = [ [[package]] name = "crossbeam-channel" -version = "0.5.2" +version = "0.5.4" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "e54ea8bc3fb1ee042f5aace6e3c6e025d3874866da222930f70ce62aceba0bfa" +checksum = "5aaa7bd5fb665c6864b5f963dd9097905c54125909c7aa94c9e18507cdbe6c53" dependencies = [ "cfg-if", "crossbeam-utils", @@ -334,10 +333,11 @@ dependencies = [ [[package]] name = "crossbeam-epoch" -version = "0.9.7" +version = "0.9.8" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c00d6d2ea26e8b151d99093005cb442fb9a37aeaca582a03ec70946f49ab5ed9" +checksum = "1145cf131a2c6ba0615079ab6a638f7e1973ac9c2634fcbeaaad6114246efe8c" dependencies = [ + "autocfg", "cfg-if", "crossbeam-utils", "lazy_static", @@ -347,9 +347,9 @@ dependencies = [ [[package]] name = "crossbeam-utils" -version = "0.8.7" +version = "0.8.8" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "b5e5bed1f1c269533fa816a0a5492b3545209a205ca1a54842be180eb63a16a6" +checksum = "0bf124c720b7686e3c2663cf54062ab0f68a88af2fb6a030e87e30bf721fcb38" dependencies = [ "cfg-if", "lazy_static", @@ -558,9 +558,9 @@ dependencies = [ [[package]] name = "getrandom" -version = "0.2.5" +version = "0.2.6" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "d39cd93900197114fa1fcb7ae84ca742095eed9442088988ae74fa744e930e77" +checksum = "9be70c98951c83b8d2f8f60d7065fa6d5146873094452a1008da8c2f1e4205ad" dependencies = [ "cfg-if", "libc", @@ -627,9 +627,9 @@ checksum = "1aab8fc367588b89dcee83ab0fd66b72b50b72fa1904d7095045ace2b0c81c35" [[package]] name = "js-sys" -version = "0.3.56" +version = "0.3.57" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a38fc24e30fd564ce974c02bf1d337caddff65be6cc4735a1f7eab22a7440f04" +checksum = "671a26f820db17c2a2750743f1dd03bafd15b98c9f30c7c2628c024c05d73397" dependencies = [ "wasm-bindgen", ] @@ -642,24 +642,25 @@ checksum = "e2abad23fbc42b3700f2f279844dc832adb2b2eb069b2df918f455c4e18cc646" [[package]] name = "libc" -version = "0.2.119" +version = "0.2.124" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "1bf2e165bb3457c8e098ea76f3e3bc9db55f87aa90d52d0e6be741470916aaa4" +checksum = "21a41fed9d98f27ab1c6d161da622a4fa35e8a54a8adc24bbf3ddd0ef70b0e50" [[package]] name = "lock_api" -version = "0.4.6" +version = "0.4.7" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "88943dd7ef4a2e5a4bfa2753aaab3013e34ce2533d1996fb18ef591e315e2b3b" +checksum = "327fa5b6a6940e4699ec49a9beae1ea4845c6bab9314e4f84ac68742139d8c53" dependencies = [ + "autocfg", "scopeguard", ] [[package]] name = "log" -version = "0.4.14" +version = "0.4.16" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "51b9bbe6c47d51fc3e1a9b945965946b4c44142ab8792c50835a980d362c2710" +checksum = "6389c490849ff5bc16be905ae24bc913a9c8892e19b2341dbc175e14c341c2b8" dependencies = [ "cfg-if", ] @@ -681,9 +682,9 @@ dependencies = [ [[package]] name = "mio" -version = "0.8.1" +version = "0.8.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "7ba42135c6a5917b9db9cd7b293e5409e1c6b041e6f9825e92e55a894c63b6f8" +checksum = "52da4364ffb0e4fe33a9841a98a3f3014fb964045ce4f7a45a398243c8d6b0c9" dependencies = [ "libc", "log", @@ -802,9 +803,9 @@ dependencies = [ [[package]] name = "parking_lot_core" -version = "0.9.1" +version = "0.9.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "28141e0cc4143da2443301914478dc976a61ffdb3f043058310c70df2fed8954" +checksum = "995f667a6c822200b0433ac218e05582f0e2efa1b922a3fd2fbaadc5f87bab37" dependencies = [ "cfg-if", "libc", @@ -813,6 +814,12 @@ dependencies = [ "windows-sys", ] +[[package]] +name = "paste" +version = "1.0.7" +source = "registry+https://github.com/rust-lang/crates.io-index" +checksum = "0c520e05135d6e763148b6426a837e239041653ba7becd2e538c076c738025fc" + [[package]] name = "pin-project-lite" version = "0.2.8" @@ -905,18 +912,18 @@ dependencies = [ [[package]] name = "proc-macro2" -version = "1.0.36" +version = "1.0.37" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c7342d5883fbccae1cc37a2353b09c87c9b0f3afd73f5fb9bba687a1f733b029" +checksum = "ec757218438d5fda206afc041538b2f6d889286160d649a86a24d37e1235afd1" dependencies = [ "unicode-xid", ] [[package]] name = "quote" -version = "1.0.15" +version = "1.0.18" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "864d3e96a899863136fc6e99f3d7cae289dafe43bf2c5ac19b70df7210c0a145" +checksum = "a1feb54ed693b93a84e14094943b84b7c4eae204c512b7ccb95ab0c66d278ad1" dependencies = [ "proc-macro2", ] @@ -957,14 +964,14 @@ version = "0.6.3" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "d34f1408f55294453790c48b2f1ebbb1c5b4b7563eb1f418bcfcfdbb06ebb4e7" dependencies = [ - "getrandom 0.2.5", + "getrandom 0.2.6", ] [[package]] name = "rayon" -version = "1.5.1" +version = "1.5.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c06aca804d41dbc8ba42dfd964f0d01334eceb64314b9ecf7c5fad5188a06d90" +checksum = "fd249e82c21598a9a426a4e00dd7adc1d640b22445ec8545feef801d1a74c221" dependencies = [ "autocfg", "crossbeam-deque", @@ -974,22 +981,21 @@ dependencies = [ [[package]] name = "rayon-core" -version = "1.9.1" +version = "1.9.2" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "d78120e2c850279833f1dd3582f730c4ab53ed95aeaaaa862a2a5c71b1656d8e" +checksum = "9f51245e1e62e1f1629cbfec37b5793bbabcaeb90f30e94d2ba03564687353e4" dependencies = [ "crossbeam-channel", "crossbeam-deque", "crossbeam-utils", - "lazy_static", "num_cpus", ] [[package]] name = "redox_syscall" -version = "0.2.12" +version = "0.2.13" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "8ae183fc1b06c149f0c1793e1eb447c8b04bfe46d48e9e48bfb8d2d7ed64ecf0" +checksum = "62f25bc4c7e55e0b0b7a1d43fb893f4fa1361d0abe38b9ce4f323c2adfe6ef42" dependencies = [ "bitflags", ] @@ -1040,19 +1046,20 @@ dependencies = [ [[package]] name = "rmp" -version = "0.8.10" +version = "0.8.11" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "4f55e5fa1446c4d5dd1f5daeed2a4fe193071771a2636274d0d7a3b082aa7ad6" +checksum = "44519172358fd6d58656c86ab8e7fbc9e1490c3e8f14d35ed78ca0dd07403c9f" dependencies = [ "byteorder", "num-traits", + "paste", ] [[package]] name = "rmp-serde" -version = "1.0.0" +version = "1.1.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "f3eedffbfcc6a428f230c04baf8f59bd73c1781361e4286111fe900849aaddaf" +checksum = "25786b0d276110195fa3d6f3f31299900cf71dfbd6c28450f3f58a0e7f7a347e" dependencies = [ "byteorder", "rmp", @@ -1074,7 +1081,7 @@ version = "0.4.0" source = "registry+https://github.com/rust-lang/crates.io-index" checksum = "bfa0f585226d2e68097d4f95d113b15b83a82e819ab25717ec0590d9584ef366" dependencies = [ - "semver 1.0.6", + "semver 1.0.7", ] [[package]] @@ -1109,9 +1116,9 @@ dependencies = [ [[package]] name = "semver" -version = "1.0.6" +version = "1.0.7" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a4a3381e03edd24287172047536f20cabde766e2cd3e65e6b00fb3af51c4f38d" +checksum = "d65bd28f48be7196d222d95b9243287f48d27aca604e08497513019ff0502cc4" [[package]] name = "semver-parser" @@ -1182,9 +1189,9 @@ dependencies = [ [[package]] name = "slab" -version = "0.4.5" +version = "0.4.6" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "9def91fd1e018fe007022791f865d0ccc9b3a0d5001e01aabb8b40e46000afb5" +checksum = "eb703cfe953bccee95685111adeedb76fabe4e97549a58d16f03ea7b9367bb32" [[package]] name = "smallvec" @@ -1204,9 +1211,9 @@ dependencies = [ [[package]] name = "spin" -version = "0.9.2" +version = "0.9.3" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "511254be0c5bcf062b019a6c89c01a664aa359ded62f78aa72c6fc137c0590e5" +checksum = "c530c2b0d0bf8b69304b39fe2001993e267461948b890cd037d8ad4293fa1a0d" dependencies = [ "lock_api", ] @@ -1225,9 +1232,9 @@ checksum = "6bdef32e8150c2a081110b42772ffe7d7c9032b606bc226c8260fd97e0976601" [[package]] name = "syn" -version = "1.0.86" +version = "1.0.91" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "8a65b3f4ffa0092e9887669db0eae07941f023991ab58ea44da8fe8e2d511c6b" +checksum = "b683b2b825c8eef438b77c36a06dc262294da3d5a5813fac20da149241dcd44d" dependencies = [ "proc-macro2", "quote", @@ -1324,18 +1331,18 @@ dependencies = [ [[package]] name = "toml" -version = "0.5.8" +version = "0.5.9" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a31142970826733df8241ef35dc040ef98c679ab14d7c3e54d827099b3acecaa" +checksum = "8d82e1a7758622a465f8cee077614c73484dac5b836c02ff6a40d5d1010324d7" dependencies = [ "serde", ] [[package]] name = "tracing" -version = "0.1.32" +version = "0.1.34" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "4a1bdf54a7c28a2bbf701e1d2233f6c77f473486b94bee4f9678da5a148dca7f" +checksum = "5d0ecdcb44a79f0fe9844f0c4f33a342cbcbb5117de8001e6ba0dc2351327d09" dependencies = [ "cfg-if", "pin-project-lite", @@ -1356,9 +1363,9 @@ dependencies = [ [[package]] name = "tracing-core" -version = "0.1.23" +version = "0.1.26" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "aa31669fa42c09c34d94d8165dd2012e8ff3c66aca50f3bb226b68f216f2706c" +checksum = "f54c8ca710e81886d498c2fd3331b56c93aa248d49de2222ad2742247c60072f" dependencies = [ "lazy_static", "valuable", @@ -1366,9 +1373,9 @@ dependencies = [ [[package]] name = "tracing-log" -version = "0.1.2" +version = "0.1.3" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "a6923477a48e41c1951f1999ef8bb5a3023eb723ceadafe78ffb65dc366761e3" +checksum = "78ddad33d2d10b1ed7eb9d1f518a5674713876e97e5bb9b7345a7984fbb4f922" dependencies = [ "lazy_static", "log", @@ -1377,9 +1384,9 @@ dependencies = [ [[package]] name = "tracing-subscriber" -version = "0.3.9" +version = "0.3.11" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "9e0ab7bdc962035a87fba73f3acca9b8a8d0034c2e6f60b84aeaaddddc155dce" +checksum = "4bc28f93baff38037f64e6f43d34cfa1605f27a49c34e8a04c5e78b0babf2596" dependencies = [ "ansi_term", "sharded-slab", @@ -1490,9 +1497,9 @@ checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423" [[package]] name = "wasm-bindgen" -version = "0.2.79" +version = "0.2.80" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "25f1af7423d8588a3d840681122e72e6a24ddbcb3f0ec385cac0d12d24256c06" +checksum = "27370197c907c55e3f1a9fbe26f44e937fe6451368324e009cba39e139dc08ad" dependencies = [ "cfg-if", "wasm-bindgen-macro", @@ -1500,9 +1507,9 @@ dependencies = [ [[package]] name = "wasm-bindgen-backend" -version = "0.2.79" +version = "0.2.80" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "8b21c0df030f5a177f3cba22e9bc4322695ec43e7257d865302900290bcdedca" +checksum = "53e04185bfa3a779273da532f5025e33398409573f348985af9a1cbf3774d3f4" dependencies = [ "bumpalo", "lazy_static", @@ -1515,9 +1522,9 @@ dependencies = [ [[package]] name = "wasm-bindgen-macro" -version = "0.2.79" +version = "0.2.80" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "2f4203d69e40a52ee523b2529a773d5ffc1dc0071801c87b3d270b471b80ed01" +checksum = "17cae7ff784d7e83a2fe7611cfe766ecf034111b49deb850a3dc7699c08251f5" dependencies = [ "quote", "wasm-bindgen-macro-support", @@ -1525,9 +1532,9 @@ dependencies = [ [[package]] name = "wasm-bindgen-macro-support" -version = "0.2.79" +version = "0.2.80" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "bfa8a30d46208db204854cadbb5d4baf5fcf8071ba5bf48190c3e59937962ebc" +checksum = "99ec0dc7a4756fffc231aab1b9f2f578d23cd391390ab27f952ae0c9b3ece20b" dependencies = [ "proc-macro2", "quote", @@ -1538,15 +1545,15 @@ dependencies = [ [[package]] name = "wasm-bindgen-shared" -version = "0.2.79" +version = "0.2.80" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "3d958d035c4438e28c70e4321a2911302f10135ce78a9c7834c0cab4123d06a2" +checksum = "d554b7f530dee5964d9a9468d95c1f8b8acae4f282807e7d27d4b03099a46744" [[package]] name = "web-sys" -version = "0.3.56" +version = "0.3.57" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c060b319f29dd25724f09a2ba1418f142f539b2be99fbf4d2d5a8f7330afb8eb" +checksum = "7b17e741662c70c8bd24ac5c5b18de314a2c26c32bf8346ee1e6f53de919c283" dependencies = [ "js-sys", "wasm-bindgen", @@ -1585,9 +1592,9 @@ checksum = "712e227841d057c1ee1cd2fb22fa7e5a5461ae8e48fa2ca79ec42cfc1931183f" [[package]] name = "windows-sys" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "3df6e476185f92a12c072be4a189a0210dcdcf512a1891d6dff9edb874deadc6" +checksum = "5acdd78cb4ba54c0045ac14f62d8f94a03d10047904ae2a40afa1e99d8f70825" dependencies = [ "windows_aarch64_msvc", "windows_i686_gnu", @@ -1598,33 +1605,33 @@ dependencies = [ [[package]] name = "windows_aarch64_msvc" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "d8e92753b1c443191654ec532f14c199742964a061be25d77d7a96f09db20bf5" +checksum = "17cffbe740121affb56fad0fc0e421804adf0ae00891205213b5cecd30db881d" [[package]] name = "windows_i686_gnu" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "6a711c68811799e017b6038e0922cb27a5e2f43a2ddb609fe0b6f3eeda9de615" +checksum = "2564fde759adb79129d9b4f54be42b32c89970c18ebf93124ca8870a498688ed" [[package]] name = "windows_i686_msvc" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "146c11bb1a02615db74680b32a68e2d61f553cc24c4eb5b4ca10311740e44172" +checksum = "9cd9d32ba70453522332c14d38814bceeb747d80b3958676007acadd7e166956" [[package]] name = "windows_x86_64_gnu" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "c912b12f7454c6620635bbff3450962753834be2a594819bd5e945af18ec64bc" +checksum = "cfce6deae227ee8d356d19effc141a509cc503dfd1f850622ec4b0f84428e1f4" [[package]] name = "windows_x86_64_msvc" -version = "0.32.0" +version = "0.34.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "504a2476202769977a040c6364301a3f65d0cc9e3fb08600b2bda150a0488316" +checksum = "d19538ccc21819d01deaf88d6a17eae6596a12e9aafdbb97916fb49896d89de9" [[package]] name = "x25519-dalek" diff --git a/Cargo.toml b/Cargo.toml index cb60aeca..7fb91b05 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "bromine" -version = "0.20.2" +version = "0.21.0" authors = ["trivernis "] edition = "2018" readme = "README.md" @@ -21,23 +21,23 @@ harness = false [dependencies] thiserror = "1.0.30" -tracing = "0.1.32" +tracing = "0.1.34" lazy_static = "1.4.0" byteorder = "1.4.3" -async-trait = "0.1.52" +async-trait = "0.1.53" num_enum = "0.5.7" futures-core = "0.3.21" trait-bound-typemap = "0.3.3" bytes = "1.1.0" dashmap = "5.2.0" -rmp-serde = { version = "1.0.0", optional = true } +rmp-serde = { version = "1.1.0", optional = true } bincode = { version = "1.3.3", optional = true } serde_json = { version = "1.0.79", optional = true } -chacha20poly1305 = {version = "0.9.0", optional = true} -x25519-dalek = {version = "1.2.0", optional = true} -rand = {version = "0.8.5", optional = true} -rand_core = {version = "0.6.3", optional = true} -sha2 = {version = "0.10.2", optional = true} +chacha20poly1305 = { version = "0.9.0", optional = true } +x25519-dalek = { version = "1.2.0", optional = true } +rand = { version = "0.8.5", optional = true } +rand_core = { version = "0.6.3", optional = true } +sha2 = { version = "0.10.2", optional = true } [dependencies.serde] optional = true @@ -54,10 +54,10 @@ optional = true features = ["alloc"] [dev-dependencies] -rmp-serde = "1.0.0" -crossbeam-utils = "0.8.7" +rmp-serde = "1.1.0" +crossbeam-utils = "0.8.8" futures = "0.3.21" -tracing-subscriber = "0.3.9" +tracing-subscriber = "0.3.11" port_check = "0.1.5" [dev-dependencies.serde] diff --git a/src/error.rs b/src/error.rs index 2985edfd..6f0dca16 100644 --- a/src/error.rs +++ b/src/error.rs @@ -1,6 +1,8 @@ use crate::error_event::ErrorEventData; use thiserror::Error; use tokio::sync::oneshot; +#[cfg(feature = "encryption_layer")] +use x25519_dalek::PublicKey; pub type Result = std::result::Result; @@ -39,6 +41,10 @@ pub enum Error { #[error("Invalid state")] InvalidState, + + #[cfg(feature = "encryption_layer")] + #[error("Connection of unknown peer with key {0:?} refused")] + UnknownPeer(PublicKey), } impl Error { diff --git a/src/lib.rs b/src/lib.rs index 6eba0549..bdcc1e95 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -119,6 +119,7 @@ pub mod ipc; mod macros; mod namespaces; pub mod protocol; +pub mod utils; /// Reexported for usage in payload implementations pub use bytes; diff --git a/src/protocol/encrypted/crypt_handling.rs b/src/protocol/encrypted/crypt_handling.rs index 27ee21aa..4e8de598 100644 --- a/src/protocol/encrypted/crypt_handling.rs +++ b/src/protocol/encrypted/crypt_handling.rs @@ -1,5 +1,5 @@ -use crate::prelude::encrypted::EncryptedStream; -use crate::prelude::IPCResult; +use crate::prelude::encrypted::{EncryptedStream, Keys}; +use crate::prelude::{IPCError, IPCResult}; use crate::protocol::AsyncProtocolStream; use bytes::Bytes; use chacha20poly1305::aead::{Aead, NewAead}; @@ -105,15 +105,21 @@ impl EncryptedStream { /// 4. The server generates a new secret /// 5. The server sends the secret to the client /// 6. The connection is upgraded with the new shared key - pub async fn from_server_key_exchange(mut inner: T, secret: StaticSecret) -> IPCResult { + pub async fn from_server_key_exchange(mut inner: T, keys: &Keys) -> IPCResult { let other_pub = receive_public_key(&mut inner).await?; - send_public_key(&mut inner, &secret).await?; - let shared_secret = secret.diffie_hellman(&other_pub); + tracing::debug!("received peer public key {:?}", other_pub); + + if !keys.allow_unknown && !keys.known_peers.contains(&other_pub) { + return Err(IPCError::UnknownPeer(other_pub)); + } + send_public_key(&mut inner, &keys.secret).await?; + let shared_secret = keys.secret.diffie_hellman(&other_pub); let mut stream = Self::new(inner, shared_secret); let permanent_secret = generate_secret(); stream.write_all(&permanent_secret).await?; stream.flush().await?; stream.update_key(permanent_secret.into()); + tracing::debug!("Connection established"); Ok(stream) } @@ -124,14 +130,20 @@ impl EncryptedStream { /// 3. The client creates an intermediary encrypted connection /// 4. The client receives the new key from the server /// 5. The connection is upgraded with the new shared key - pub async fn from_client_key_exchange(mut inner: T, secret: StaticSecret) -> IPCResult { - send_public_key(&mut inner, &secret).await?; + pub async fn from_client_key_exchange(mut inner: T, keys: &Keys) -> IPCResult { + send_public_key(&mut inner, &keys.secret).await?; let other_pub = receive_public_key(&mut inner).await?; - let shared_secret = secret.diffie_hellman(&other_pub); + tracing::debug!("received peer public key {:?}", other_pub); + + if !keys.allow_unknown && !keys.known_peers.contains(&other_pub) { + return Err(IPCError::UnknownPeer(other_pub)); + } + let shared_secret = keys.secret.diffie_hellman(&other_pub); let mut stream = Self::new(inner, shared_secret); let mut key_buf = vec![0u8; 32]; stream.read_exact(&mut key_buf).await?; stream.update_key(key_buf.into()); + tracing::debug!("Connection established"); Ok(stream) } diff --git a/src/protocol/encrypted/mod.rs b/src/protocol/encrypted/mod.rs index b7eb4675..62133f0c 100644 --- a/src/protocol/encrypted/mod.rs +++ b/src/protocol/encrypted/mod.rs @@ -10,7 +10,7 @@ use std::future::Future; use std::io; use std::pin::Pin; use tokio::io::{AsyncRead, AsyncReadExt, AsyncWrite}; -use x25519_dalek::{SharedSecret, StaticSecret}; +use x25519_dalek::{PublicKey, SharedSecret, StaticSecret}; use crate::prelude::encrypted::crypt_handling::CipherBox; use crate::prelude::{AsyncProtocolStream, AsyncStreamProtocolListener}; @@ -20,7 +20,14 @@ pub type OptionalFuture = Option + Send + Sync #[derive(Clone)] pub struct EncryptionOptions { pub inner_options: T, + pub keys: Keys, +} + +#[derive(Clone)] +pub struct Keys { pub secret: StaticSecret, + pub known_peers: Vec, + pub allow_unknown: bool, } impl Default for EncryptionOptions { @@ -30,7 +37,11 @@ impl Default for EncryptionOptions { rng.fill_bytes(&mut secret); Self { - secret: StaticSecret::from(secret), + keys: Keys { + known_peers: Vec::new(), + allow_unknown: false, + secret: StaticSecret::from(secret), + }, inner_options: T::default(), } } @@ -38,12 +49,12 @@ impl Default for EncryptionOptions { pub struct EncryptedListener { inner: T, - secret: StaticSecret, + keys: Keys, } impl EncryptedListener { - pub fn new(inner: T, secret: StaticSecret) -> Self { - Self { inner, secret } + pub fn new(inner: T, keys: Keys) -> Self { + Self { inner, keys } } } diff --git a/src/protocol/encrypted/protocol_impl.rs b/src/protocol/encrypted/protocol_impl.rs index 53d664d2..4c90c984 100644 --- a/src/protocol/encrypted/protocol_impl.rs +++ b/src/protocol/encrypted/protocol_impl.rs @@ -18,13 +18,12 @@ impl AsyncStreamProtocolListener for EncryptedLi ) -> IPCResult { let inner = T::protocol_bind(address, options.inner_options).await?; - Ok(EncryptedListener::new(inner, options.secret)) + Ok(EncryptedListener::new(inner, options.keys)) } async fn protocol_accept(&self) -> IPCResult<(Self::Stream, Self::RemoteAddressType)> { let (inner_stream, remote_addr) = self.inner.protocol_accept().await?; - let stream = - Self::Stream::from_server_key_exchange(inner_stream, self.secret.clone()).await?; + let stream = Self::Stream::from_server_key_exchange(inner_stream, &self.keys).await?; Ok((stream, remote_addr)) } @@ -40,7 +39,7 @@ impl AsyncProtocolStream for EncryptedStream { options: Self::StreamOptions, ) -> Result { let inner = T::protocol_connect(address, options.inner_options).await?; - EncryptedStream::from_client_key_exchange(inner, options.secret).await + EncryptedStream::from_client_key_exchange(inner, &options.keys).await } } diff --git a/src/utils.rs b/src/utils.rs new file mode 100644 index 00000000..a5b247cf --- /dev/null +++ b/src/utils.rs @@ -0,0 +1,11 @@ +#[cfg(feature = "encryption_layer")] +/// Generates a secret that can be passed to the options of the encryption layer and for creating +/// a public key +pub fn generate_secret() -> x25519_dalek::StaticSecret { + let mut rng = rand::thread_rng(); + use rand_core::RngCore; + let mut secret = [0u8; 32]; + rng.fill_bytes(&mut secret); + + x25519_dalek::StaticSecret::from(secret) +} diff --git a/tests/test_encryption.rs b/tests/test_encryption.rs index 1bfa5ea7..a53547c1 100644 --- a/tests/test_encryption.rs +++ b/tests/test_encryption.rs @@ -1,19 +1,38 @@ #![cfg(feature = "encryption_layer")] + use crate::utils::call_counter::increment_counter_for_event; use crate::utils::protocol::TestProtocolListener; use crate::utils::{get_free_port, start_server_and_client}; -use bromine::prelude::encrypted::EncryptedListener; +use bromine::prelude::encrypted::{EncryptedListener, EncryptionOptions, Keys}; use bromine::prelude::*; +use bromine::utils::generate_secret; use bromine::IPCBuilder; use byteorder::{BigEndian, ReadBytesExt}; use bytes::{BufMut, Bytes, BytesMut}; +use dashmap::DashMap; use futures::StreamExt; +use lazy_static::lazy_static; use rand_core::RngCore; use std::io::Read; use std::time::Duration; +use x25519_dalek::{PublicKey, StaticSecret}; mod utils; +pub fn get_secret>(name: S) -> StaticSecret { + lazy_static! { + static ref KEYS: DashMap = DashMap::new(); + } + if KEYS.contains_key(name.as_ref()) { + KEYS.get(name.as_ref()).as_ref().unwrap().value().clone() + } else { + let secret = generate_secret(); + KEYS.insert(name.as_ref().to_string(), secret.clone()); + + secret + } +} + #[tokio::test] async fn it_sends_and_receives_smaller_packages() { send_and_receive_bytes(140).await.unwrap(); @@ -66,7 +85,27 @@ async fn get_client_with_server() -> Context { } fn get_builder(port: u8) -> IPCBuilder> { + let server_secret = get_secret(format!("server-{}", port)); + let client_secret = get_secret(format!("client-{}", port)); + let client_keys = Keys { + secret: client_secret.clone(), + known_peers: vec![PublicKey::from(&server_secret)], + allow_unknown: false, + }; + let server_keys = Keys { + secret: server_secret.clone(), + known_peers: vec![PublicKey::from(&client_secret)], + allow_unknown: false, + }; IPCBuilder::new() + .client_options(EncryptionOptions { + keys: client_keys, + inner_options: (), + }) + .server_options(EncryptionOptions { + keys: server_keys, + inner_options: (), + }) .address(port) .on("bytes", callback!(handle_bytes)) .on("string", callback!(handle_string))