mirror of
https://code.briarproject.org/briar/briar.git
synced 2026-02-13 03:09:04 +01:00
51d58fadad
This ensures the frame number is covered by the MAC, cleanly separating encryption from authentication (previously we depended on the encryption layer to garble frames if they were reordered).
111 lines
3.1 KiB
Java
111 lines
3.1 KiB
Java
package net.sf.briar.transport;
|
|
|
|
import static net.sf.briar.api.transport.TransportConstants.FRAME_HEADER_LENGTH;
|
|
import static net.sf.briar.api.transport.TransportConstants.MAX_FRAME_LENGTH;
|
|
import static net.sf.briar.util.ByteUtils.MAX_32_BIT_UNSIGNED;
|
|
|
|
import java.io.ByteArrayOutputStream;
|
|
import java.io.FilterOutputStream;
|
|
import java.io.IOException;
|
|
import java.io.OutputStream;
|
|
import java.security.InvalidKeyException;
|
|
|
|
import javax.crypto.Mac;
|
|
|
|
import net.sf.briar.api.crypto.ErasableKey;
|
|
import net.sf.briar.api.transport.ConnectionWriter;
|
|
|
|
/**
|
|
* A ConnectionWriter that buffers its input and writes a frame whenever there
|
|
* is a full-size frame to write or the flush() method is called.
|
|
* <p>
|
|
* This class is not thread-safe.
|
|
*/
|
|
class ConnectionWriterImpl extends FilterOutputStream
|
|
implements ConnectionWriter {
|
|
|
|
protected final ConnectionEncrypter encrypter;
|
|
protected final Mac mac;
|
|
protected final int maxPayloadLength;
|
|
protected final ByteArrayOutputStream buf;
|
|
protected final byte[] header;
|
|
|
|
protected long frame = 0L;
|
|
|
|
ConnectionWriterImpl(ConnectionEncrypter encrypter, Mac mac,
|
|
ErasableKey macKey) {
|
|
super(encrypter.getOutputStream());
|
|
this.encrypter = encrypter;
|
|
this.mac = mac;
|
|
// Initialise the MAC
|
|
try {
|
|
mac.init(macKey);
|
|
} catch(InvalidKeyException badKey) {
|
|
throw new IllegalArgumentException(badKey);
|
|
}
|
|
macKey.erase();
|
|
maxPayloadLength =
|
|
MAX_FRAME_LENGTH - FRAME_HEADER_LENGTH - mac.getMacLength();
|
|
buf = new ByteArrayOutputStream(maxPayloadLength);
|
|
header = new byte[FRAME_HEADER_LENGTH];
|
|
}
|
|
|
|
public OutputStream getOutputStream() {
|
|
return this;
|
|
}
|
|
|
|
public long getRemainingCapacity() {
|
|
long capacity = encrypter.getRemainingCapacity();
|
|
// If there's any data buffered, subtract it and its auth overhead
|
|
int overheadPerFrame = header.length + mac.getMacLength();
|
|
if(buf.size() > 0) capacity -= buf.size() + overheadPerFrame;
|
|
// Subtract the auth overhead from the remaining capacity
|
|
long frames = (long) Math.ceil((double) capacity / MAX_FRAME_LENGTH);
|
|
return Math.max(0L, capacity - frames * overheadPerFrame);
|
|
}
|
|
|
|
@Override
|
|
public void flush() throws IOException {
|
|
if(buf.size() > 0) writeFrame();
|
|
out.flush();
|
|
}
|
|
|
|
@Override
|
|
public void write(int b) throws IOException {
|
|
buf.write(b);
|
|
if(buf.size() == maxPayloadLength) writeFrame();
|
|
}
|
|
|
|
@Override
|
|
public void write(byte[] b) throws IOException {
|
|
write(b, 0, b.length);
|
|
}
|
|
|
|
@Override
|
|
public void write(byte[] b, int off, int len) throws IOException {
|
|
int available = maxPayloadLength - buf.size();
|
|
while(available <= len) {
|
|
buf.write(b, off, available);
|
|
writeFrame();
|
|
off += available;
|
|
len -= available;
|
|
available = maxPayloadLength;
|
|
}
|
|
buf.write(b, off, len);
|
|
}
|
|
|
|
private void writeFrame() throws IOException {
|
|
if(frame > MAX_32_BIT_UNSIGNED) throw new IllegalStateException();
|
|
byte[] payload = buf.toByteArray();
|
|
if(payload.length > maxPayloadLength) throw new IllegalStateException();
|
|
HeaderEncoder.encodeHeader(header, frame, payload.length, 0);
|
|
out.write(header);
|
|
mac.update(header);
|
|
out.write(payload);
|
|
mac.update(payload);
|
|
encrypter.writeMac(mac.doFinal());
|
|
frame++;
|
|
buf.reset();
|
|
}
|
|
}
|