handshake.mutex.Unlock()
+ setZero(hash[:])
+ setZero(chainKey[:])
+
return peer
}
handshake.mixKey(ss[:])
}()
- // add preshared key (psk)
+ // add preshared key
var tau [blake2s.Size]byte
var key [chacha20poly1305.KeySize]byte
aead, _ := chacha20poly1305.New(key[:])
_, err := aead.Open(nil, ZeroNonce[:], msg.Empty[:], hash[:])
if err != nil {
- device.log.Debug.Println("failed to open")
return false
}
mixHash(&hash, &hash, msg.Empty[:])
return lookup.peer
}
-/* Derives a new key-pair from the current handshake state
+/* Derives a new keypair from the current handshake state
*
*/
-func (peer *Peer) NewKeypair() *Keypair {
+func (peer *Peer) DeriveNewKeypair() error {
device := peer.device
handshake := &peer.handshake
handshake.mutex.Lock()
)
isInitiator = false
} else {
- return nil
+ return errors.New("invalid state for keypair derivation")
}
// zero handshake
setZero(handshake.chainKey[:])
+ setZero(handshake.hash[:]) // Doesn't necessarily need to be zeroed. Could be used for something interesting down the line.
setZero(handshake.localEphemeral[:])
peer.handshake.state = HandshakeZeroed
}
kp.mutex.Unlock()
- return keypair
+ return nil
+}
+
+func (peer *Peer) ReceivedWithKeypair(receivedKeypair *Keypair) bool {
+ kp := &peer.keypairs
+ if kp.next != receivedKeypair {
+ return false
+ }
+ kp.mutex.Lock()
+ defer kp.mutex.Unlock()
+ if kp.next != receivedKeypair {
+ return false
+ }
+ old := kp.previous
+ kp.previous = kp.current
+ peer.device.DeleteKeypair(old)
+ kp.current = kp.next
+ kp.next = nil
+ return true
}
t.Log("deriving keys")
- key1 := peer1.NewKeypair()
- key2 := peer2.NewKeypair()
+ key1 := peer1.DeriveNewKeypair()
+ key2 := peer2.DeriveNewKeypair()
if key1 == nil {
- t.Fatal("failed to dervice key-pair for peer 1")
+ t.Fatal("failed to dervice keypair for peer 1")
}
if key2 == nil {
- t.Fatal("failed to dervice key-pair for peer 2")
+ t.Fatal("failed to dervice keypair for peer 2")
}
// encrypting / decryption test
continue
}
- // check key-pair expiry
+ // check keypair expiry
if keypair.created.Add(RejectAfterTime).Before(time.Now()) {
continue
continue
}
- if peer.NewKeypair() == nil {
+ if peer.DeriveNewKeypair() != nil {
continue
}
peer.timersAnyAuthenticatedPacketTraversal()
peer.timersAnyAuthenticatedPacketReceived()
- // derive key-pair
+ // derive keypair
- if peer.NewKeypair() == nil {
+ if peer.DeriveNewKeypair() != nil {
continue
}
peer.endpoint = elem.endpoint
peer.mutex.Unlock()
- // check if using new key-pair
-
- kp := &peer.keypairs
- if kp.next == elem.keypair {
- kp.mutex.Lock()
- if kp.next != elem.keypair {
- kp.mutex.Unlock()
- } else {
- old := kp.previous
- kp.previous = kp.current
- device.DeleteKeypair(old)
- kp.current = kp.next
- kp.next = nil
- kp.mutex.Unlock()
- peer.timersHandshakeComplete()
- select {
- case peer.signals.newKeypairArrived <- struct{}{}:
- default:
- }
+ // check if using new keypair
+ if peer.ReceivedWithKeypair(elem.keypair) {
+ peer.timersHandshakeComplete()
+ select {
+ case peer.signals.newKeypairArrived <- struct{}{}:
+ default:
}
}
buffer *[MaxMessageSize]byte // slice holding the packet data
packet []byte // slice of "buffer" (always!)
nonce uint64 // nonce for encryption
- keypair *Keypair // key-pair for encryption
+ keypair *Keypair // keypair for encryption
peer *Peer // related peer
}
peer.SendHandshakeInitiation(false)
- logDebug.Println(peer, ": Awaiting key-pair")
+ logDebug.Println(peer, ": Awaiting keypair")
select {
case <-peer.signals.newKeypairArrived:
- logDebug.Println(peer, ": Obtained awaited key-pair")
+ logDebug.Println(peer, ": Obtained awaited keypair")
case <-peer.signals.flushNonceQueue:
for {
select {
projects / thirdparty / wireguard-go.git / commitdiff
