PoliEcho/pea_2_pea
PoliEcho/pea_2_pea
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 2 Wiki Activity

fix some protocol bugs

Browse Source
This commit is contained in:
PoliEcho 2025-07-28 20:23:55 +02:00
parent 81649bf2fd
commit 752541c9f6
7 changed files with 147 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Cargo.toml
View File

@ -27,3 +27,6 @@ readonly = "0.2.13"
sha2 = "0.10.9" sha2 = "0.10.9"
smol = "2.0.2" smol = "2.0.2"
tappers = "0.4.2" tappers = "0.4.2"
[features]
no-timeout = []

9
src/client/main.rs
View File

@ -52,6 +52,7 @@ fn main() -> std::io::Result<()> {
})() })()
.expect("Failed to bind to any available port"); .expect("Failed to bind to any available port");
#[cfg(not(feature = "no-timeout"))]
socket.set_read_timeout(Some(Duration::new(10, 0)))?; // set timeout to 10 seconds socket.set_read_timeout(Some(Duration::new(10, 0)))?; // set timeout to 10 seconds
let server_port: u16 = (|| -> u16 { let server_port: u16 = (|| -> u16 {
@ -82,6 +83,14 @@ fn main() -> std::io::Result<()> {
rng.fill_bytes(&mut salt); rng.fill_bytes(&mut salt);
rng.fill_bytes(&mut iv); rng.fill_bytes(&mut iv);
let enc_key_tmp = shared::crypto::derive_key_from_password(p.as_bytes(), &salt); let enc_key_tmp = shared::crypto::derive_key_from_password(p.as_bytes(), &salt);
#[cfg(debug_assertions)]
eprintln!(
"key: {}",
enc_key_tmp
.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>()
);
( (
shared::crypto::encrypt(&enc_key_tmp, &iv, public_sock_addr_raw.as_bytes()) shared::crypto::encrypt(&enc_key_tmp, &iv, public_sock_addr_raw.as_bytes())
.unwrap() .unwrap()

35
src/client/net.rs
View File

@ -116,6 +116,22 @@ pub fn register_request(
+ public_sock_addr.len() + public_sock_addr.len()
] ]
.into_boxed_slice(); .into_boxed_slice();
#[cfg(debug_assertions)]
eprintln!(
"registering network:\niv: {}\nSockAddr: {}\nsalt: {}",
iv.iter().map(|x| format!("{:02X} ", x)).collect::<String>(),
public_sock_addr
.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>(),
network
.salt
.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>(),
);
send_buf[0] = ServerMethods::REGISTER as u8; // set metod identification byte send_buf[0] = ServerMethods::REGISTER as u8; // set metod identification byte
send_buf[RegisterRequestDataPositions::ENCRYPTED as usize] = network.encrypted as u8; send_buf[RegisterRequestDataPositions::ENCRYPTED as usize] = network.encrypted as u8;
@ -184,7 +200,7 @@ pub fn get_request(
false false
}; };
let num_of_clients: u8 = buf[GetResponseDataPositions::NUM_OF_CLIENTS as usize]; let mut num_of_clients: u8 = buf[GetResponseDataPositions::NUM_OF_CLIENTS as usize];
let salt: [u8; SALT_AND_IV_SIZE as usize] = buf[GetResponseDataPositions::SALT as usize let salt: [u8; SALT_AND_IV_SIZE as usize] = buf[GetResponseDataPositions::SALT as usize
..GetResponseDataPositions::SALT as usize + SALT_AND_IV_SIZE as usize] ..GetResponseDataPositions::SALT as usize + SALT_AND_IV_SIZE as usize]
@ -198,6 +214,13 @@ pub fn get_request(
Some(p) => shared::crypto::derive_key_from_password(p.as_bytes(), &salt), Some(p) => shared::crypto::derive_key_from_password(p.as_bytes(), &salt),
None => [0; 32], None => [0; 32],
}; };
#[cfg(debug_assertions)]
eprintln!(
"key: {}",
key.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>()
);
while num_of_clients != 0 { while num_of_clients != 0 {
let sock_addr_len: u8 = buf[GetResponseDataPositions::CLIENTS as usize + offset]; let sock_addr_len: u8 = buf[GetResponseDataPositions::CLIENTS as usize + offset];
@ -211,6 +234,14 @@ pub fn get_request(
+ sock_addr_len as usize] + sock_addr_len as usize]
.to_vec() .to_vec()
.into_boxed_slice(); .into_boxed_slice();
#[cfg(debug_assertions)]
eprintln!(
"sock_addr_raw: {}",
sock_addr_raw
.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>()
);
loop { loop {
// loop used to easily skip peer // loop used to easily skip peer
let peer: SocketAddr = if encrypted { let peer: SocketAddr = if encrypted {
@ -267,6 +298,7 @@ pub fn get_request(
break; break;
} }
offset += SALT_AND_IV_SIZE as usize + sock_addr_len as usize; offset += SALT_AND_IV_SIZE as usize + sock_addr_len as usize;
num_of_clients -= 1;
} }
return Ok(types::Network::new( return Ok(types::Network::new(
@ -291,6 +323,7 @@ pub fn send_heartbeat(
HeartBeatRequestDataPositions::IV as usize HeartBeatRequestDataPositions::IV as usize
+ SALT_AND_IV_SIZE as usize + SALT_AND_IV_SIZE as usize
+ my_public_sock_addr.len() + my_public_sock_addr.len()
+ network.net_id.len()
] ]
.into_boxed_slice(); .into_boxed_slice();

3
src/lib.rs
View File

@ -92,7 +92,8 @@ pub enum GetResponseDataPositions {
ENCRYPTED = 1, // this feeld should be 0 if not encrypted ENCRYPTED = 1, // this feeld should be 0 if not encrypted
NUM_OF_CLIENTS = 2, NUM_OF_CLIENTS = 2,
SALT = 3, SALT = 3,
CLIENTS = (SALT_AND_IV_SIZE as usize + RegisterRequestDataPositions::SALT as usize) as usize, CLIENTS =
(SALT_AND_IV_SIZE as usize + RegisterRequestDataPositions::SALT as usize) - 1 as usize,
// after this there will be blocks of this sturcture: one byte size of sockaddr than there will be IV that is SALT_AND_IV_SIZE long and after that there will be sockaddr this repeats until the end of packet // after this there will be blocks of this sturcture: one byte size of sockaddr than there will be IV that is SALT_AND_IV_SIZE long and after that there will be sockaddr this repeats until the end of packet
} }

3
src/server/main.rs
View File

@ -24,9 +24,10 @@ fn main() -> std::io::Result<()> {
let registration_vector: Arc<ConcurrentVec<types::Registration>> = let registration_vector: Arc<ConcurrentVec<types::Registration>> =
Arc::new(orx_concurrent_vec::ConcurrentVec::new()); Arc::new(orx_concurrent_vec::ConcurrentVec::new());
let mut buf: [u8; pea_2_pea::BUFFER_SIZE] = [0; pea_2_pea::BUFFER_SIZE]; let mut buf: [u8; pea_2_pea::BUFFER_SIZE] = [0u8; pea_2_pea::BUFFER_SIZE];
smol::block_on(async { smol::block_on(async {
loop { loop {
buf.fill(0);
match socket.recv_from(&mut buf) { match socket.recv_from(&mut buf) {
Ok((data_length, src)) => { Ok((data_length, src)) => {
smol::spawn(net::handle_request( smol::spawn(net::handle_request(

39
src/server/net.rs
View File

@ -48,7 +48,7 @@ pub async fn handle_request(
return; // drop packet if id lenght is biger than posible return; // drop packet if id lenght is biger than posible
} }
let net_id: String = match std::str::from_utf8(&buf[1..]) { let net_id: String = match std::str::from_utf8(&buf[1..data_len]) {
Ok(s) => s.to_string(), Ok(s) => s.to_string(),
Err(e) => { Err(e) => {
eprint!("id to utf-8 failed: {}", e); eprint!("id to utf-8 failed: {}", e);
@ -68,7 +68,7 @@ pub async fn handle_request(
eprintln!("send {} bytes", s); eprintln!("send {} bytes", s);
} }
Err(e) => { Err(e) => {
eprintln!("Error snding data: {}", e); eprintln!("Error sending data: {}", e);
} }
}; };
return; return;
@ -84,11 +84,13 @@ pub async fn handle_request(
// lets start serializing // lets start serializing
send_vec.push(registration.encrypted as u8); send_vec.push(registration.encrypted as u8);
send_vec.push(registration.net_id.len() as u8);
send_vec.push(registration.clients.len() as u8); send_vec.push(registration.clients.len() as u8);
// todo!("make sure it allows only 255 client per network max"); // todo!("make sure it allows only 255 client per network max");
send_vec.extend_from_slice(&registration.salt); send_vec.extend_from_slice(&registration.salt);
#[cfg(debug_assertions)]
eprintln!("Found {} clients", registration.clients.len());
registration.clients.iter().for_each(|client| { registration.clients.iter().for_each(|client| {
let sock_addr_len: u8 = client.client_sock_addr.len() as u8; let sock_addr_len: u8 = client.client_sock_addr.len() as u8;
@ -131,7 +133,7 @@ pub async fn handle_request(
//read lenght of sockaddr //read lenght of sockaddr
// rustc be like RUST HAS NO TERNARY OPERATON USE if-else // rustc be like RUST HAS NO TERNARY OPERATON USE if-else
let len_id: u8 = if buf[RegisterRequestDataPositions::ID_LEN as usize] != 0 { let id_len: u8 = if buf[RegisterRequestDataPositions::ID_LEN as usize] != 0 {
buf[RegisterRequestDataPositions::ID_LEN as usize] buf[RegisterRequestDataPositions::ID_LEN as usize]
} else { } else {
return; return;
@ -146,7 +148,7 @@ pub async fn handle_request(
let net_id: String = match std::str::from_utf8( let net_id: String = match std::str::from_utf8(
&buf[(RegisterRequestDataPositions::DATA as usize) &buf[(RegisterRequestDataPositions::DATA as usize)
..(len_id as usize) + (RegisterRequestDataPositions::DATA as usize)], ..(id_len as usize) + (RegisterRequestDataPositions::DATA as usize)],
) { ) {
Ok(s) => s.to_string(), Ok(s) => s.to_string(),
Err(e) => { Err(e) => {
@ -197,12 +199,33 @@ pub async fn handle_request(
salt = None; salt = None;
iv = None; iv = None;
} }
let client_sock_addr: Vec<u8> = buf[RegisterRequestDataPositions::DATA as usize
+ id_len as usize
..RegisterRequestDataPositions::DATA as usize
+ id_len as usize
+ (sock_addr_len as usize)]
.to_vec();
#[cfg(debug_assertions)]
eprintln!(
"first client registerd:\n iv: {}\nSockAddr: {}\nsalt: {}",
iv.iter()
.flatten()
.map(|x| format!("{:02X} ", x))
.collect::<String>(),
client_sock_addr
.iter()
.map(|x| format!("{:02X} ", x))
.collect::<String>(),
salt.iter()
.flatten()
.map(|x| format!("{:02X} ", x))
.collect::<String>(),
);
registration_vector.push(types::Registration::new( registration_vector.push(types::Registration::new(
net_id, net_id,
buf[(RegisterRequestDataPositions::DATA as usize) client_sock_addr,
..(RegisterRequestDataPositions::DATA as usize) + (sock_addr_len as usize)]
.to_vec(),
encrypted, encrypted,
chrono::Utc::now().timestamp(), chrono::Utc::now().timestamp(),
salt, salt,

67
src/shared/crypto.rs
View File

@ -30,5 +30,70 @@ pub fn decrypt(
ciphertext: &[u8], ciphertext: &[u8],
) -> Result<Vec<u8>, Box<dyn std::error::Error>> { ) -> Result<Vec<u8>, Box<dyn std::error::Error>> {
let cipher = Aes256CbcDec::new_from_slices(key, iv)?; let cipher = Aes256CbcDec::new_from_slices(key, iv)?;
Ok(cipher.decrypt_padded_vec_mut::<Pkcs7>(ciphertext).unwrap()) match cipher.decrypt_padded_vec_mut::<Pkcs7>(ciphertext) {
Ok(v) => Ok(v),
Err(e) => Err(format!("Decryption unpad error: {:?}", e).into()),
}
}
pub fn test_all_crypto_functions() {
// Test data
let password = b"test_password_123";
let salt = b"random_salt_data";
let iv = b"1234567890123456"; // 16 bytes for AES-256-CBC
let test_data = b"Hello, this is secret data to encrypt and decrypt!";
println!("Testing crypto functions...");
// Test 1: Key derivation
println!("1. Testing key derivation...");
let key = derive_key_from_password(password, salt);
println!(" ✓ Key derived successfully: {} bytes", key.len());
// Test 2: Encryption
println!("2. Testing encryption...");
match encrypt(&key, iv, test_data) {
Ok(ciphertext) => {
println!(" ✓ Encryption successful");
println!(" Original data length: {} bytes", test_data.len());
println!(" Encrypted data length: {} bytes", ciphertext.len());
// Test 3: Decryption
println!("3. Testing decryption...");
match decrypt(&key, iv, &ciphertext) {
Ok(decrypted) => {
println!(" ✓ Decryption successful");
// Test 4: Verify data integrity
println!("4. Verifying data integrity...");
if decrypted == test_data {
println!(
" ✓ Data integrity verified - original and decrypted data match!"
);
} else {
println!(" ✗ Data integrity failed - data doesn't match!");
}
}
Err(e) => {
println!(" ✗ Decryption failed: {:?}", e);
}
}
}
Err(e) => {
println!(" ✗ Encryption failed: {:?}", e);
}
}
// Test 5: Test with different key (should fail to decrypt properly)
println!("5. Testing with wrong key (should fail)...");
let wrong_key = derive_key_from_password(b"wrong_password", salt);
match encrypt(&key, iv, test_data) {
Ok(ciphertext) => match decrypt(&wrong_key, iv, &ciphertext) {
Ok(_) => println!(" ⚠ Unexpected success with wrong key"),
Err(_) => println!(" ✓ Correctly failed with wrong key"),
},
Err(e) => println!(" Error in setup: {:?}", e),
}
println!("All tests completed!");
} }