CEF/grumble
1
0
Fork 0
forked from External/grumble
Code Pull requests Activity

grumble: add support for crypto mode negotiation.

Browse source
This commit is contained in:
Mikkel Krautz 2012-12-08 22:10:21 +01:00
parent 12381e89c4
commit cabe380244
4 changed files with 43 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

32
client.go
View file

@ -71,6 +71,7 @@ type Client struct {
ClientName string ClientName string
OSName string OSName string
OSVersion string OSVersion string
CryptoMode string
// Personal // Personal
Username string Username string
@ -483,8 +484,9 @@ func (client *Client) tlsRecvLoop() {
// what version of the protocol it should speak. // what version of the protocol it should speak.
if client.state == StateClientConnected { if client.state == StateClientConnected {
version := &mumbleproto.Version{ version := &mumbleproto.Version{
Version: proto.Uint32(0x10203), Version: proto.Uint32(0x10205),
Release: proto.String("Grumble"), Release: proto.String("Grumble"),
CryptoModes: cryptstate.SupportedModes(),
} }
if client.server.cfg.BoolValue("SendOSInfo") { if client.server.cfg.BoolValue("SendOSInfo") {
version.Os = proto.String(runtime.GOOS) version.Os = proto.String(runtime.GOOS)
@ -529,6 +531,32 @@ func (client *Client) tlsRecvLoop() {
client.OSVersion = *version.OsVersion client.OSVersion = *version.OsVersion
} }
// Extract the client's supported crypto mode.
// If the client does not pick a crypto mode
// itself, use an invalid mode (the empty string)
// as its requested mode. This is effectively
// a flag asking for the default crypto mode.
requestedMode := ""
if len(version.CryptoModes) > 0 {
requestedMode = version.CryptoModes[0]
}
// Check if the requested crypto mode is supported
// by us. If not, fall back to the default crypto
// mode.
supportedModes := cryptstate.SupportedModes()
ok := false
for _, mode := range supportedModes {
if requestedMode == mode {
ok = true
break
}
}
if !ok {
requestedMode = "OCB2-AES128"
}
client.CryptoMode = requestedMode
client.state = StateClientSentVersion client.state = StateClientSentVersion
} }
} }

5
pkg/cryptstate/cryptstate.go
View file

@ -36,6 +36,11 @@ type CryptState struct {
cipher cipher.Block cipher cipher.Block
} }
// SupportedModes returns the list of supported CryptoModes.
func SupportedModes() []string {
return []string{"OCB2-AES128"}
}
func (cs *CryptState) GenerateKey() error { func (cs *CryptState) GenerateKey() error {
_, err := io.ReadFull(rand.Reader, cs.RawKey[0:]) _, err := io.ReadFull(rand.Reader, cs.RawKey[0:])
if err != nil { if err != nil {

11
pkg/mumbleproto/Mumble.pb.go
View file

@ -206,11 +206,12 @@ func (x *ContextActionModify_Operation) UnmarshalJSON(data []byte) error {
} }
type Version struct { type Version struct {
Version *uint32 `protobuf:"varint,1,opt,name=version" json:"version,omitempty"` Version *uint32 `protobuf:"varint,1,opt,name=version" json:"version,omitempty"`
Release *string `protobuf:"bytes,2,opt,name=release" json:"release,omitempty"` Release *string `protobuf:"bytes,2,opt,name=release" json:"release,omitempty"`
Os *string `protobuf:"bytes,3,opt,name=os" json:"os,omitempty"` Os *string `protobuf:"bytes,3,opt,name=os" json:"os,omitempty"`
OsVersion *string `protobuf:"bytes,4,opt,name=os_version" json:"os_version,omitempty"` OsVersion *string `protobuf:"bytes,4,opt,name=os_version" json:"os_version,omitempty"`
XXX_unrecognized []byte `json:"-"` CryptoModes []string `protobuf:"bytes,5,rep,name=crypto_modes" json:"crypto_modes,omitempty"`
XXX_unrecognized []byte `json:"-"`
} }
func (this *Version) Reset() { *this = Version{} } func (this *Version) Reset() { *this = Version{} }

1
pkg/mumbleproto/Mumble.proto
View file

@ -7,6 +7,7 @@ message Version {
optional string release = 2; optional string release = 2;
optional string os = 3; optional string os = 3;
optional string os_version = 4; optional string os_version = 4;
repeated string crypto_modes = 5;
} }
message UDPTunnel { message UDPTunnel {