echelon/i2p.i2p
1
0
Fork 0
forked from I2P_Developers/i2p.i2p
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

NetDB: Cache blinding data for lookups and decryption (proposal #123)

Browse Source
This commit is contained in:
zzz
2019-03-27 12:51:10 +00:00
parent 14492d7269
commit 82eea0a8f9
9 changed files with 427 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
core/java/src/net/i2p/data/BlindData.java
View File

@ -25,6 +25,7 @@ public class BlindData {
private long _routingKeyGenMod;
/**
* @param secret may be null or zero-length
* @throws IllegalArgumentException on various errors
*/
public BlindData(I2PAppContext ctx, Destination dest, SigType blindType, String secret) {
@ -33,6 +34,7 @@ public class BlindData {
}
/**
* @param secret may be null or zero-length
* @throws IllegalArgumentException on various errors
*/
public BlindData(I2PAppContext ctx, SigningPublicKey spk, SigType blindType, String secret) {
@ -47,13 +49,27 @@ public class BlindData {
}
/**
* @return The blinded key for the current day
* @return The unblinded SPK, non-null
*/
public SigningPublicKey getUnblindedPubKey() {
return _clearSPK;
}
/**
* @return The blinded key for the current day, non-null
*/
public synchronized SigningPublicKey getBlindedPubKey() {
calculate();
return _blindSPK;
}
/**
* @return The hash of the destination if known, or null
*/
public synchronized Hash getDestHash() {
return _dest != null ? _dest.getHash() : null;
}
/**
* @return The hash of the blinded key for the current day
*/
@ -127,4 +143,22 @@ public class BlindData {
System.arraycopy(_blindSPK.getData(), 0, hashData, 2, _blindSPK.length());
_blindHash = _context.sha().calculateHash(hashData);
}
@Override
public synchronized String toString() {
calculate();
StringBuilder buf = new StringBuilder(256);
buf.append("[BlindData: ");
buf.append("\n\tSigningPublicKey: ").append(_clearSPK);
buf.append("\n\tAlpha : ").append(_alpha);
buf.append("\n\tBlindedPublicKey: ").append(_blindSPK);
buf.append("\n\tBlinded Hash : ").append(_blindHash);
buf.append("\n\tSecret: ").append(_secret);
if (_dest != null)
buf.append("\n\tDestination: ").append(_dest);
if (_dest != null)
buf.append("\n\tDestination: unknown");
buf.append(']');
return buf.toString();
}
}

47
core/java/src/net/i2p/data/EncryptedLeaseSet.java
View File

@ -33,6 +33,8 @@ public class EncryptedLeaseSet extends LeaseSet2 {
private LeaseSet2 _decryptedLS2;
private Hash __calculatedHash;
private SigningPrivateKey _alpha;
// to decrypt with if we don't have full dest
private SigningPublicKey _unblindedSPK;
private String _secret;
private final Log _log;
@ -120,11 +122,31 @@ public class EncryptedLeaseSet extends LeaseSet2 {
_destination = dest;
}
SigningPublicKey spk = dest.getSigningPublicKey();
setSigningKey(spk);
}
/**
* Overridden to set the blinded key
*
* @param spk unblinded key non-null, must be EdDSA_SHA512_Ed25519 or RedDSA_SHA512_Ed25519
* @throws IllegalStateException if already signed
* @throws IllegalArgumentException if not EdDSA
* @since 0.9.40
*/
@Override
public void setSigningKey(SigningPublicKey spk) {
// TODO already-set checks
SigType type = spk.getType();
if (type != SigType.EdDSA_SHA512_Ed25519 &&
type != SigType.RedDSA_SHA512_Ed25519)
throw new IllegalArgumentException();
SigningPublicKey bpk = blind();
if (_unblindedSPK != null) {
if (!_unblindedSPK.equals(spk))
throw new IllegalArgumentException("unblinded pubkey mismatch");
} else {
_unblindedSPK = spk;
}
SigningPublicKey bpk = blind(spk);
if (_signingKey == null)
_signingKey = bpk;
else if (!_signingKey.equals(bpk))
@ -139,13 +161,12 @@ public class EncryptedLeaseSet extends LeaseSet2 {
*
* @since 0.9.39
*/
private SigningPublicKey blind() {
SigningPublicKey spk = _destination.getSigningPublicKey();
private SigningPublicKey blind(SigningPublicKey spk) {
I2PAppContext ctx = I2PAppContext.getGlobalContext();
if (_published <= 0)
_alpha = Blinding.generateAlpha(ctx, _destination.getSigningPublicKey(), _secret);
_alpha = Blinding.generateAlpha(ctx, spk, _secret);
else
_alpha = Blinding.generateAlpha(ctx, _destination.getSigningPublicKey(), _secret, _published);
_alpha = Blinding.generateAlpha(ctx, spk, _secret, _published);
SigningPublicKey rv = Blinding.blind(spk, _alpha);
if (_log.shouldDebug())
_log.debug("Blind:" +
@ -476,14 +497,13 @@ public class EncryptedLeaseSet extends LeaseSet2 {
* @since 0.9.39
*/
private byte[] getSubcredential(I2PAppContext ctx) {
if (_destination == null)
throw new IllegalStateException("no known destination to decrypt with");
SigningPublicKey destspk = _destination.getSigningPublicKey();
int spklen = destspk.length();
if (_unblindedSPK == null)
throw new IllegalStateException("no known SPK to decrypt with");
int spklen = _unblindedSPK.length();
byte[] in = new byte[spklen + 4];
// SHA256("credential" || spk || sigtypein || sigtypeout)
System.arraycopy(destspk.getData(), 0, in, 0, spklen);
DataHelper.toLong(in, spklen, 2, destspk.getType().getCode());
System.arraycopy(_unblindedSPK.getData(), 0, in, 0, spklen);
DataHelper.toLong(in, spklen, 2, _unblindedSPK.getType().getCode());
DataHelper.toLong(in, spklen + 2, 2, SigType.RedDSA_SHA512_Ed25519.getCode());
byte[] credential = hash(ctx, CREDENTIAL, in);
byte[] spk = _signingKey.getData();
@ -572,8 +592,9 @@ public class EncryptedLeaseSet extends LeaseSet2 {
return false;
}
_log.info("ELS2 outer sig verify success");
if (_destination == null) {
_log.warn("ELS2 no dest to decrypt with");
if (_unblindedSPK == null) {
if (_log.shouldWarn())
_log.warn("ELS2 no dest/SPK to decrypt with", new Exception("I did it"));
return true;
}
try {