keejef
/
session-ios
mirror of https://github.com/oxen-io/session-ios
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
dev
voice-calls-2
voice-calls
authentication
2.5.0
2.4.5
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.2
2.3.1
2.3.0
2.2.14
2.2.13
2.2.12
2.2.11
2.2.10
2.2.9
2.2.6
2.2.4
2.2.2
2.2.1
2.2.0
2.1.1
2.0.3
2.0.2
2.0.1
2.0.0
1.0.0-alpha.1
audit-2
audit
2.8.0
2.7.4
2.7.3
2.7.2
2.7.1
2.7.0
2.6.3
2.6.2
2.6.1
2.6.0
2.2.8
2.2.7
2.2.5
2.2.3
2.1.0
1.9.7
1.9.6
1.9.5
1.9.4
1.9.3
1.9.1
1.9.0
1.8.3
1.8.2
1.8.1
1.8.0
1.7.8
1.7.7
1.7.6
1.7.5
1.7.4
1.7.3
1.7.2
1.7.0
1.6.5
1.6.4
1.6.3
1.6.2
1.6.1
1.6.0
1.5.3
1.5.2
1.5.1-beta
1.5.0-beta
1.5.0
1.4.7
1.4.6
1.4.5
1.4.4
1.4.3
1.4.2
1.4.0-beta
1.4.0
1.3.0-alpha.1
1.3.0
1.2.6
1.2.5
1.2.4
1.2.3
1.2.1
1.2.0-alpha.2
1.2.0-alpha.1
1.2.0
1.13.0
1.12.9
1.12.8
1.12.7
1.12.6
1.12.5
1.12.4
1.12.2
1.12.1
1.11.9
1.11.8
1.11.7
1.11.6
1.11.5
1.11.4
1.11.3
1.11.24
1.11.23
1.11.22
1.11.21
1.11.20
1.11.2
1.11.19
1.11.18
1.11.17
1.11.16
1.11.15
1.11.14
1.11.13
1.11.12
1.11.11
1.11.10
1.11.1
1.11.0
1.10.2
1.10.1
1.10.0
1.1.0-alpha.4
1.1.0-alpha.3
1.1.0-alpha.2
1.1.0-alpha.1
1.1.0
1.0.8
1.0.7
1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0-alpha.3
1.0.0-alpha.2
1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '601ba9a9b2'
${ noResults }
session-ios/SessionSnodeKit/Crypto/Crypto+SessionSnodeKit.swift

184 lines
7.2 KiB
Swift
Raw Blame History

// Copyright © 2023 Rangeproof Pty Ltd. All rights reserved.
//
// stringlint:disable
import Foundation
import SessionUtil
import SessionUtilitiesKit
// MARK: - ONS Response
internal extension Crypto.Generator {
static func sessionId(
name: String,
response: SnodeAPI.ONSResolveResponse
) -> Crypto.Generator<String> {
return Crypto.Generator(
id: "sessionId_for_ONS_response",
args: [name, response]
) {
guard let hexEncodedNonce: String = response.result.nonce else {
throw SnodeAPIError.decryptionFailed
}
// Name must be in lowercase
var cLowercaseName: [CChar] = name.lowercased().cArray
var cCiphertext: [UInt8] = Array(Data(hex: response.result.encryptedValue))
var cNonce: [UInt8] = Array(Data(hex: hexEncodedNonce))
var cSessionId: [CChar] = [CChar](repeating: 0, count: 67)
guard
cNonce.count == 24,
session_decrypt_ons_response(
&cLowercaseName,
cLowercaseName.count,
&cCiphertext,
cCiphertext.count,
&cNonce,
&cSessionId
)
else { throw SnodeAPIError.decryptionFailed }
return String(cString: cSessionId)
}
}
}
// MARK: - Onion Request
internal extension Crypto.Generator {
static func onionRequestPayload(
payload: Data,
destination: OnionRequestAPIDestination,
path: [Snode]
) -> Crypto.Generator<OnionRequestAPI.PreparedOnionRequest> {
return Crypto.Generator(
id: "onionRequestPayload",
args: [payload, destination, path]
) {
guard let guardSnode: Snode = path.first else { throw OnionRequestAPIError.insufficientSnodes }
var cPayloadIn: [UInt8] = Array(payload)
var finalX25519Pubkey: [UInt8] = [UInt8](repeating: 0, count: 32)
var finalX25519Seckey: [UInt8] = [UInt8](repeating: 0, count: 32)
var maybePayloadOutPtr: UnsafeMutablePointer<UInt8>?
var payloadOutLen: Int = 0
var result: Bool = false
try CExceptionHelper.performSafely {
var builder: UnsafeMutablePointer<onion_request_builder_object>? = nil
onion_request_builder_init(&builder)
switch destination {
case .server(let host, let target, let x25519PublicKey, let scheme, let port):
let targetScheme: String = (scheme ?? "https")
var cHost: [CChar] = host.cArray.nullTerminated()
var cTarget: [CChar] = target.cArray.nullTerminated()
var cScheme: [CChar] = targetScheme.cArray.nullTerminated()
var cDestinationx25519Pubkey: [CChar] = x25519PublicKey.cArray.nullTerminated()
onion_request_builder_set_server_destination(
builder,
&cHost,
&cTarget,
&cScheme,
(port ?? (targetScheme == "https" ? 443 : 80)),
&cDestinationx25519Pubkey
)
case .snode(let snode):
var cDestinationEd25519Pubkey: [CChar] = snode.ed25519PublicKey.cArray.nullTerminated()
var cDestinationx25519Pubkey: [CChar] = snode.x25519PublicKey.cArray.nullTerminated()
onion_request_builder_set_snode_destination(
builder,
&cDestinationEd25519Pubkey,
&cDestinationx25519Pubkey
)
}
path.forEach { snode in
var cEd25519Pubkey: [CChar] = snode.ed25519PublicKey.cArray.nullTerminated()
var cX25519Pubkey: [CChar] = snode.x25519PublicKey.cArray.nullTerminated()
onion_request_builder_add_hop(builder, &cEd25519Pubkey, &cX25519Pubkey)
}
result = onion_request_builder_build(
builder,
&cPayloadIn,
payload.count,
&maybePayloadOutPtr,
&payloadOutLen,
&finalX25519Pubkey,
&finalX25519Seckey
)
}
guard
result,
let payloadOutPtr: UnsafeMutablePointer<UInt8> = maybePayloadOutPtr
else { throw OnionRequestAPIError.pathEncryptionFailed }
/// Need to deallocate the `payloadOutPtr` before returning
let payloadOut: Data = Data(bytes: payloadOutPtr, count: payloadOutLen)
maybePayloadOutPtr?.deallocate()
return (
guardSnode,
payloadOut,
KeyPair(publicKey: finalX25519Pubkey, secretKey: finalX25519Seckey)
)
}
}
static func onionRequestResponse(
responseData: Data,
destination: OnionRequestAPIDestination,
finalX25519KeyPair: KeyPair
) -> Crypto.Generator<Data> {
return Crypto.Generator(
id: "onionRequestResponse",
args: [responseData, destination, finalX25519KeyPair]
) {
var ciphertext: [UInt8] = Array(responseData)
var cDestinationx25519Pubkey: [UInt8] = {
switch destination {
case .server(_, _, let x25519PublicKey, _, _):
return Array(Data(hex: x25519PublicKey))
case .snode(let snode): return Array(Data(hex: snode.x25519PublicKey))
}
}()
var finalX25519Pubkey: [UInt8] = finalX25519KeyPair.publicKey
var finalX25519Seckey: [UInt8] = finalX25519KeyPair.secretKey
var maybePlaintextPtr: UnsafeMutablePointer<UInt8>?
var plaintextLen: Int = 0
var result: Bool = false
try CExceptionHelper.performSafely {
result = onion_request_decrypt(
&ciphertext,
ciphertext.count,
ENCRYPT_TYPE_X_CHA_CHA_20,
&cDestinationx25519Pubkey,
&finalX25519Pubkey,
&finalX25519Seckey,
&maybePlaintextPtr,
&plaintextLen
)
}
guard
result,
let plaintextPtr: UnsafeMutablePointer<UInt8> = maybePlaintextPtr
else { throw OnionRequestAPIError.pathEncryptionFailed }
/// Need to deallocate the `plaintextPtr` before returning
let plaintext: Data = Data(bytes: plaintextPtr, count: plaintextLen)
maybePlaintextPtr?.deallocate()
return plaintext
}
}
}
Reference in New Issue View Git Blame Copy Permalink