missing Network.Tox.Crypto.Handlers

author: James Crayne <jim.crayne@gmail.com> 2017-10-31 04:06:51 +0000
committer: James Crayne <jim.crayne@gmail.com> 2017-10-31 04:06:51 +0000
commit: 343eba08320d9c09350e71c1fd0e8776c3688875 (patch)
tree: 8def1b9f2c1a1dd235deef32e451e4d5b7cde7e9 /src/Network/Tox/Crypto
parent: 602b042d3f121b295e7886befdfb06805df519c1 (diff)
1 files changed, 125 insertions, 0 deletions
diff --git a/src/Network/Tox/Crypto/Handlers.hs b/src/Network/Tox/Crypto/Handlers.hs
new file mode 100644
index 00000000..f2c792cd
--- /dev/null
+++ b/src/Network/Tox/Crypto/Handlers.hs
@@ -0,0 +1,125 @@
+{-# LANGUAGE NamedFieldPuns #-}
+{-# LANGUAGE TupleSections #-}
+module Network.Tox.Crypto.Handlers where
+import Network.Tox.Crypto.Transport
+import Network.Tox.DHT.Transport (Cookie(..),CookieData(..))
+import Crypto.Tox
+import Control.Concurrent.STM
+import Network.Address
+import qualified Data.Map.Strict as Map
+import Crypto.Hash
+import Control.Applicative
+import Control.Monad
+import Data.Time.Clock.POSIX
+data NetCryptoSessionStatus = Unaccepted | Accepted | Confirmed
+    deriving (Eq,Ord,Show,Enum)
+data NetCryptoSession = NCrypto { ncState         :: TVar NetCryptoSessionStatus
+                                , ncTheirPacketNonce:: TVar Nonce24 -- base nonce + packet number
+                                , ncMyPacketNonce   :: TVar Nonce24 -- base nonce + packet number
+                                , ncHandShake     :: TVar (Maybe (Handshake Encrypted))
+                                , ncCookie        :: TVar (Maybe Cookie)
+                                , ncTheirSessionPublic :: Maybe PublicKey
+                                , ncSessionSecret :: SecretKey
+                                , ncSockAddr      :: SockAddr
+                                }
+data NetCryptoSessions = NCSessions { netCryptoSessions :: TVar (Map.Map SockAddr NetCryptoSession)
+                                    , transportCrypto :: TransportCrypto
+                                    }
+newSessionsState :: TransportCrypto -> IO NetCryptoSessions
+newSessionsState crypto = error "todo"
+data HandshakeParams 
+        = HParam
+            { hpTheirBaseNonce :: Maybe Nonce24 -- ignore and generate your own
+            , hpOtherCookie :: Maybe Cookie
+            , hpTheirSessionKeyPublic :: PublicKey
+            , hpMySecretKey :: SecretKey
+            , hpCookieRemotePubkey :: PublicKey
+            , hpCookieRemoteDhtkey :: PublicKey
+            }
+newHandShakeData :: TransportCrypto -> HandshakeParams -> HandshakeData
+newHandShakeData = error "todo"
+cryptoNetHandler sessions addr (NetHandshake (Handshake (Cookie n24 ecookie) nonce24 encrypted)) = do
+    let crypto = transportCrypto sessions
+        allsessions = netCryptoSessions sessions
+        anyRight xs f = foldr1 (<|>) $ map f xs
+    seckeys <- map fst <$> atomically (readTVar (userKeys crypto))
+    symkey <- atomically $ transportSymmetric crypto
+    now <- getPOSIXTime
+    let lr = do -- Either Monad
+            (CookieData cookieTime remotePubkey remoteDhtkey) <- (decodePlain =<< decryptSymmetric symkey n24 ecookie)
+            (key,HandshakeData { baseNonce, sessionKey, cookieHash, otherCookie })
+                <- anyRight seckeys $ \key -> (key,) <$> (decodePlain =<< decrypt (computeSharedSecret key remotePubkey nonce24) encrypted)
+            -- check cookie time < 15 seconds ago
+            guard (now - fromIntegral cookieTime < 15)
+            -- cookie hash is valid? sha512 of ecookie
+            let hinit = hashInit
+                hctx = hashUpdate hinit n24
+                hctx' = hashUpdate hctx ecookie
+                digest = hashFinalize hctx'
+            guard (cookieHash == digest)
+            -- known friend?
+            -- todo
+            return 
+             HParam
+                { hpTheirBaseNonce = Just baseNonce
+                , hpOtherCookie    = Just otherCookie
+                , hpTheirSessionKeyPublic =  sessionKey
+                , hpMySecretKey        = key
+                , hpCookieRemotePubkey = remotePubkey
+                , hpCookieRemoteDhtkey = remoteDhtkey
+                }
+    case lr of
+        Left _ -> return ()
+        Right hp@(HParam
+                      { hpTheirBaseNonce = Just theirBaseNonce
+                      , hpOtherCookie    = Just otherCookie             
+                      , hpTheirSessionKeyPublic = theirSessionKey
+                      , hpMySecretKey        = key
+                      , hpCookieRemotePubkey = remotePublicKey
+                      , hpCookieRemoteDhtkey = remoteDhtPublicKey
+                      }) -> do
+            sessionsmap <- atomically $ readTVar allsessions
+            case Map.lookup addr sessionsmap of
+                Nothing -> do -- create new session
+                    ncState0 <- atomically $ newTVar Accepted
+                    ncTheirPacketNonce0 <- atomically $ newTVar theirBaseNonce
+                    n24 <- atomically $ transportNewNonce crypto
+                    let myhandshakeData = newHandShakeData crypto hp
+                        plain = encodePlain myhandshakeData
+                        state = computeSharedSecret key remoteDhtPublicKey n24
+                        encrypted = encrypt state plain
+                        myhandshake = Handshake { handshakeCookie = otherCookie
+                                                , handshakeNonce = n24
+                                                , handshakeData = encrypted
+                                                }
+                    ncMyPacketNonce0 <- atomically $ newTVar (baseNonce myhandshakeData)
+                    ncHandShake0 <- atomically $ newTVar (Just myhandshake)
+                    cookie0 <- atomically $ newTVar (Just otherCookie)
+                    newsession <- generateSecretKey
+                    let netCryptoSession = 
+                            NCrypto { ncState         = ncState0
+                                    , ncTheirPacketNonce= ncTheirPacketNonce0
+                                    , ncMyPacketNonce   = ncMyPacketNonce0
+                                    , ncHandShake     = ncHandShake0
+                                    , ncCookie        = cookie0
+                                    , ncTheirSessionPublic = Just theirSessionKey
+                                    , ncSessionSecret = newsession
+                                    , ncSockAddr      = addr
+                                    }
+                    atomically $ modifyTVar allsessions (Map.insert addr netCryptoSession)
+                Just netCryptoSession -> return () -- TODO: UPdate existing session
+    return Nothing 
+cryptoNetHandler sessions addr (NetCrypto (CryptoPacket nonce16 encrypted)) = do
+    let crypto = transportCrypto sessions
+    -- Handle Encrypted Message
+    -- TODO
+    return Nothing
+cryptoNetHandlerr _ _ _ = return id
author	James Crayne <jim.crayne@gmail.com>	2017-10-31 04:06:51 +0000
committer	James Crayne <jim.crayne@gmail.com>	2017-10-31 04:06:51 +0000
commit	343eba08320d9c09350e71c1fd0e8776c3688875 (patch)
tree	8def1b9f2c1a1dd235deef32e451e4d5b7cde7e9 /src/Network/Tox/Crypto
parent	602b042d3f121b295e7886befdfb06805df519c1 (diff)

diff --git a/src/Network/Tox/Crypto/Handlers.hs b/src/Network/Tox/Crypto/Handlers.hs new file mode 100644 index 00000000..f2c792cd --- /dev/null +++ b/src/Network/Tox/Crypto/Handlers.hs
@@ -0,0 +1,125 @@
	1	{-# LANGUAGE NamedFieldPuns #-}
	2	{-# LANGUAGE TupleSections #-}
	3	module Network.Tox.Crypto.Handlers where
	4
	5	import Network.Tox.Crypto.Transport
	6	import Network.Tox.DHT.Transport (Cookie(..),CookieData(..))
	7	import Crypto.Tox
	8	import Control.Concurrent.STM
	9	import Network.Address
	10	import qualified Data.Map.Strict as Map
	11	import Crypto.Hash
	12	import Control.Applicative
	13	import Control.Monad
	14	import Data.Time.Clock.POSIX
	15
	16	data NetCryptoSessionStatus = Unaccepted \| Accepted \| Confirmed
	17	deriving (Eq,Ord,Show,Enum)
	18
	19
	20	data NetCryptoSession = NCrypto { ncState :: TVar NetCryptoSessionStatus
	21	, ncTheirPacketNonce:: TVar Nonce24 -- base nonce + packet number
	22	, ncMyPacketNonce :: TVar Nonce24 -- base nonce + packet number
	23	, ncHandShake :: TVar (Maybe (Handshake Encrypted))
	24	, ncCookie :: TVar (Maybe Cookie)
	25	, ncTheirSessionPublic :: Maybe PublicKey
	26	, ncSessionSecret :: SecretKey
	27	, ncSockAddr :: SockAddr
	28	}
	29
	30	data NetCryptoSessions = NCSessions { netCryptoSessions :: TVar (Map.Map SockAddr NetCryptoSession)
	31	, transportCrypto :: TransportCrypto
	32	}
	33
	34	newSessionsState :: TransportCrypto -> IO NetCryptoSessions
	35	newSessionsState crypto = error "todo"
	36
	37	data HandshakeParams
	38	= HParam
	39	{ hpTheirBaseNonce :: Maybe Nonce24 -- ignore and generate your own
	40	, hpOtherCookie :: Maybe Cookie
	41	, hpTheirSessionKeyPublic :: PublicKey
	42	, hpMySecretKey :: SecretKey
	43	, hpCookieRemotePubkey :: PublicKey
	44	, hpCookieRemoteDhtkey :: PublicKey
	45	}
	46	newHandShakeData :: TransportCrypto -> HandshakeParams -> HandshakeData
	47	newHandShakeData = error "todo"
	48
	49	cryptoNetHandler sessions addr (NetHandshake (Handshake (Cookie n24 ecookie) nonce24 encrypted)) = do
	50	let crypto = transportCrypto sessions
	51	allsessions = netCryptoSessions sessions
	52	anyRight xs f = foldr1 (<\|>) $ map f xs
	53	seckeys <- map fst <$> atomically (readTVar (userKeys crypto))
	54	symkey <- atomically $ transportSymmetric crypto
	55	now <- getPOSIXTime
	56	let lr = do -- Either Monad
	57	(CookieData cookieTime remotePubkey remoteDhtkey) <- (decodePlain =<< decryptSymmetric symkey n24 ecookie)
	58	(key,HandshakeData { baseNonce, sessionKey, cookieHash, otherCookie })
	59	<- anyRight seckeys $ \key -> (key,) <$> (decodePlain =<< decrypt (computeSharedSecret key remotePubkey nonce24) encrypted)
	60	-- check cookie time < 15 seconds ago
	61	guard (now - fromIntegral cookieTime < 15)
	62	-- cookie hash is valid? sha512 of ecookie
	63	let hinit = hashInit
	64	hctx = hashUpdate hinit n24
	65	hctx' = hashUpdate hctx ecookie
	66	digest = hashFinalize hctx'
	67	guard (cookieHash == digest)
	68	-- known friend?
	69	-- todo
	70	return
	71	HParam
	72	{ hpTheirBaseNonce = Just baseNonce
	73	, hpOtherCookie = Just otherCookie
	74	, hpTheirSessionKeyPublic = sessionKey
	75	, hpMySecretKey = key
	76	, hpCookieRemotePubkey = remotePubkey
	77	, hpCookieRemoteDhtkey = remoteDhtkey
	78	}
	79	case lr of
	80	Left _ -> return ()
	81	Right hp@(HParam
	82	{ hpTheirBaseNonce = Just theirBaseNonce
	83	, hpOtherCookie = Just otherCookie
	84	, hpTheirSessionKeyPublic = theirSessionKey
	85	, hpMySecretKey = key
	86	, hpCookieRemotePubkey = remotePublicKey
	87	, hpCookieRemoteDhtkey = remoteDhtPublicKey
	88	}) -> do
	89	sessionsmap <- atomically $ readTVar allsessions
	90	case Map.lookup addr sessionsmap of
	91	Nothing -> do -- create new session
	92	ncState0 <- atomically $ newTVar Accepted
	93	ncTheirPacketNonce0 <- atomically $ newTVar theirBaseNonce
	94	n24 <- atomically $ transportNewNonce crypto
	95	let myhandshakeData = newHandShakeData crypto hp
	96	plain = encodePlain myhandshakeData
	97	state = computeSharedSecret key remoteDhtPublicKey n24
	98	encrypted = encrypt state plain
	99	myhandshake = Handshake { handshakeCookie = otherCookie
	100	, handshakeNonce = n24
	101	, handshakeData = encrypted
	102	}
	103	ncMyPacketNonce0 <- atomically $ newTVar (baseNonce myhandshakeData)
	104	ncHandShake0 <- atomically $ newTVar (Just myhandshake)
	105	cookie0 <- atomically $ newTVar (Just otherCookie)
	106	newsession <- generateSecretKey
	107	let netCryptoSession =
	108	NCrypto { ncState = ncState0
	109	, ncTheirPacketNonce= ncTheirPacketNonce0
	110	, ncMyPacketNonce = ncMyPacketNonce0
	111	, ncHandShake = ncHandShake0
	112	, ncCookie = cookie0
	113	, ncTheirSessionPublic = Just theirSessionKey
	114	, ncSessionSecret = newsession
	115	, ncSockAddr = addr
	116	}
	117	atomically $ modifyTVar allsessions (Map.insert addr netCryptoSession)
	118	Just netCryptoSession -> return () -- TODO: UPdate existing session
	119	return Nothing
	120	cryptoNetHandler sessions addr (NetCrypto (CryptoPacket nonce16 encrypted)) = do
	121	let crypto = transportCrypto sessions
	122	-- Handle Encrypted Message
	123	-- TODO
	124	return Nothing
	125	cryptoNetHandlerr _ _ _ = return id