• Home
• im.actor
• actor-api-tor
• 1.0.1
• source code
• CircuitNodeCryptoState.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.subgraph.orchid.circuits.CircuitNodeCryptoState Maven / Gradle / Ivy

package com.subgraph.orchid.circuits;

import com.subgraph.orchid.Cell;
import com.subgraph.orchid.RelayCell;
import com.subgraph.orchid.crypto.TorMessageDigest;
import com.subgraph.orchid.crypto.TorStreamCipher;
import com.subgraph.orchid.data.HexDigest;

public class CircuitNodeCryptoState {
	public final static int KEY_MATERIAL_SIZE = TorMessageDigest.TOR_DIGEST_SIZE * 2 + TorStreamCipher.KEY_LEN * 2;
	
	public static CircuitNodeCryptoState createFromKeyMaterial(byte[] keyMaterial, byte[] verifyDigest) {
		return new CircuitNodeCryptoState(keyMaterial, verifyDigest);
	}
	
	private final HexDigest checksumDigest;
	private final TorMessageDigest forwardDigest;
	private final TorMessageDigest backwardDigest;
	private final TorStreamCipher forwardCipher;
	private final TorStreamCipher backwardCipher;
	
	static private byte[] extractDigestBytes(byte[] keyMaterial, int offset) {
		final byte[] digestBytes = new byte[TorMessageDigest.TOR_DIGEST_SIZE];
		System.arraycopy(keyMaterial, offset, digestBytes, 0, TorMessageDigest.TOR_DIGEST_SIZE);
		return digestBytes;
	}
	
	static private byte[] extractCipherKey(byte[] keyMaterial, int offset) {
		final byte[] keyBytes = new byte[TorStreamCipher.KEY_LEN];
		System.arraycopy(keyMaterial, offset, keyBytes, 0, TorStreamCipher.KEY_LEN);
		return keyBytes;
	}
	
	private CircuitNodeCryptoState(byte[] keyMaterial, byte[] verifyDigest) {
		checksumDigest = HexDigest.createFromDigestBytes(verifyDigest);
		int offset = 0;
		
		forwardDigest = new TorMessageDigest();
		forwardDigest.update(extractDigestBytes(keyMaterial, offset));
		offset += TorMessageDigest.TOR_DIGEST_SIZE;

		backwardDigest = new TorMessageDigest();
		backwardDigest.update(extractDigestBytes(keyMaterial, offset));
		offset += TorMessageDigest.TOR_DIGEST_SIZE;
		
		forwardCipher = TorStreamCipher.createFromKeyBytes(extractCipherKey(keyMaterial, offset));
		offset += TorStreamCipher.KEY_LEN;
		
		backwardCipher = TorStreamCipher.createFromKeyBytes(extractCipherKey(keyMaterial, offset));
	}
	
	boolean verifyPacketDigest(HexDigest packetDigest) {
		return checksumDigest.equals(packetDigest);
	}
	
	void encryptForwardCell(Cell cell) {
		forwardCipher.encrypt(cell.getCellBytes(), Cell.CELL_HEADER_LEN, Cell.CELL_PAYLOAD_LEN);
	}
	
	boolean decryptBackwardCell(Cell cell) {
		backwardCipher.encrypt(cell.getCellBytes(), Cell.CELL_HEADER_LEN, Cell.CELL_PAYLOAD_LEN);
		return isRecognizedCell(cell);
	}
	
	void updateForwardDigest(Cell cell) {
		forwardDigest.update(cell.getCellBytes(), Cell.CELL_HEADER_LEN, Cell.CELL_PAYLOAD_LEN);
	}
	
	byte[] getForwardDigestBytes() {
		return forwardDigest.getDigestBytes();
	}
	
	private boolean isRecognizedCell(Cell cell) {
		if(cell.getShortAt(RelayCell.RECOGNIZED_OFFSET) != 0) 
			return false;
	
		final byte[] digest = extractRelayDigest(cell);
		final byte[] peek = backwardDigest.peekDigest(cell.getCellBytes(), Cell.CELL_HEADER_LEN, Cell.CELL_PAYLOAD_LEN);
		for(int i = 0; i < 4; i++) 
			if(digest[i] != peek[i]) {
				replaceRelayDigest(cell, digest);
				return false;
			}
		backwardDigest.update(cell.getCellBytes(), Cell.CELL_HEADER_LEN, Cell.CELL_PAYLOAD_LEN);
		replaceRelayDigest(cell, digest);
		return true;		
	}
	
	private byte[] extractRelayDigest(Cell cell) {
		final byte[] digest = new byte[4];
		for(int i = 0; i < 4; i++) {
			digest[i] = (byte) cell.getByteAt(i + RelayCell.DIGEST_OFFSET);
			cell.putByteAt(i + RelayCell.DIGEST_OFFSET, 0);
		}
		return digest;
	}
	
	private void replaceRelayDigest(Cell cell, byte[] digest) {
		for(int i = 0; i < 4; i++)
			cell.putByteAt(i + RelayCell.DIGEST_OFFSET, digest[i] & 0xFF);	
	}
}