I2P_Developers/i2p.i2p-bote
3
0
Fork 0
Code Issues 4 Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
76fd98c34660fa3605510676a0a07ebac347c014
i2p.i2p-bote/src/i2p/bote/packet/EncryptedEmailPacket.java
HungryHobo cc846c3abe * Rename KademliaException to DhtException; in DHT, throw DhtException instead of Exception 
* Drop Comparable from I2PSendQueue.ScheduledPacket
* Remove an unneccessary "throws"
* Fix some minor issues found by FindBugs:
  - Don't ignore return values of File.mkdir, File.renameTo, etc.
  - Close open files even if an exception happens
  - Use Integer.valueOf instead of the Integer constructor
  - Make some inner classes static
  - Remove an unused method from UniqueId
  - Make two fields volatile
2010-02-10 04:59:44 +00:00

221 lines
8.6 KiB
Java
Raw Blame History

/**
* Copyright (C) 2009 HungryHobo@mail.i2p
*
* The GPG fingerprint for HungryHobo@mail.i2p is:
* 6DD3 EAA2 9990 29BC 4AD2 7486 1E2C 7B61 76DC DC12
*
* This file is part of I2P-Bote.
* I2P-Bote is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* I2P-Bote is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with I2P-Bote. If not, see <http://www.gnu.org/licenses/>.
*/
package i2p.bote.packet;
import i2p.bote.UniqueId;
import i2p.bote.email.EmailDestination;
import i2p.bote.email.EmailIdentity;
import i2p.bote.packet.dht.DhtStorablePacket;
import java.io.ByteArrayOutputStream;
import java.io.DataOutputStream;
import java.io.IOException;
import java.nio.ByteBuffer;
import java.util.ArrayList;
import java.util.Collection;
import net.i2p.I2PAppContext;
import net.i2p.data.DataFormatException;
import net.i2p.data.Hash;
import net.i2p.data.PrivateKey;
import net.i2p.data.PublicKey;
import net.i2p.data.SessionKey;
import net.i2p.util.Log;
import net.i2p.util.RandomSource;
/**
* An <code>EncryptedEmailPacket</code> basically contains an encrypted <code>UnencryptedEmailPacket</code>
* and an unencrypted copy of the deletion key. The unencrypted deletion key (<code>deletionKeyPlain</code>)
* is used for validation of delete requests (the sender of a delete request has to decrypt the deletion key
* using the decryption key for the Email Destination because it doesn't have the unencrypted copy).
* deletion key).
* An alternative to this scheme would have been to only use plain-text deletion keys in email packets and
* have the recipient sign deletion requests, but this would require a storage node to know the recipient's
* public signing key.
*
*/
@TypeCode('E')
public class EncryptedEmailPacket extends DhtStorablePacket {
private static final int PADDED_SIZE = PrivateKey.KEYSIZE_BYTES; // TODO is this a good choice?
private Log log = new Log(EncryptedEmailPacket.class);
private Hash dhtKey;
private UniqueId deletionKeyPlain;
private byte[] encryptedData; // the encrypted fields of an I2PBote email packet: Encrypted Deletion Key, Message ID, Fragment Index, Number of Fragments, and Content.
/**
* Creates an <code>EncryptedEmailPacket</code> from an <code>UnencryptedEmailPacket</code>.
* The public key of <code>emailDestination</code> is used for encryption.
* @param unencryptedPacket
* @param emailDestination
* @param appContext
*/
public EncryptedEmailPacket(UnencryptedEmailPacket unencryptedPacket, EmailDestination emailDestination, I2PAppContext appContext) {
dhtKey = generateRandomHash();
deletionKeyPlain = unencryptedPacket.getVerificationDeletionKey();
// put all the encrypted fields into an array
ByteArrayOutputStream byteStream = new ByteArrayOutputStream();
DataOutputStream dataStream = new DataOutputStream(byteStream);
try {
deletionKeyPlain.writeTo(dataStream);
unencryptedPacket.getMessageId().writeTo(dataStream);
dataStream.writeShort(unencryptedPacket.getFragmentIndex());
dataStream.writeShort(unencryptedPacket.getNumFragments());
byte[] content = unencryptedPacket.getContent();
dataStream.writeShort(content.length);
dataStream.write(content);
encryptedData = encrypt(byteStream.toByteArray(), emailDestination, appContext);
}
catch (IOException e) {
log.error("Can't write to ByteArrayOutputStream/DataOutputStream.", e);
}
}
/**
* Creates an <code>EncryptedEmailPacket</code> from raw datagram data.
* To read the encrypted parts of the packet, <code>decrypt</code> must be called first.
* @param data
*/
public EncryptedEmailPacket(byte[] data) {
super(data);
ByteBuffer buffer = ByteBuffer.wrap(data, HEADER_LENGTH, data.length-HEADER_LENGTH);
dhtKey = readHash(buffer);
deletionKeyPlain = new UniqueId(buffer);
int encryptedLength = buffer.getShort(); // length of the encrypted part of the packet
encryptedData = new byte[encryptedLength];
buffer.get(encryptedData);
}
private Hash generateRandomHash() {
RandomSource randomSource = RandomSource.getInstance();
byte[] bytes = new byte[Hash.HASH_LENGTH];
for (int i=0; i<bytes.length; i++)
bytes[i] = (byte)randomSource.nextInt(256);
return new Hash(bytes);
}
/**
* Decrypts the encrypted part of the packet with the private key of <code>identity</code>.
* @param identity
* @param appContext
* @throws DataFormatException
*/
public UnencryptedEmailPacket decrypt(EmailIdentity identity, I2PAppContext appContext) throws DataFormatException {
byte[] decryptedData = decrypt(encryptedData, identity, appContext);
ByteBuffer buffer = ByteBuffer.wrap(decryptedData);
UniqueId deletionKeyVerify = new UniqueId(buffer);
UniqueId messageId = new UniqueId(buffer);
int fragmentIndex = buffer.getShort();
int numFragments = buffer.getShort();
int contentLength = buffer.getShort();
byte[] content = new byte[contentLength];
buffer.get(content);
return new UnencryptedEmailPacket(messageId, fragmentIndex, numFragments, content, deletionKeyVerify);
}
/**
* Decrypts data with an email identity's private key.
* @param data
* @param identity
* @param appContext
* @return The decrypted data
*/
private byte[] decrypt(byte[] data, EmailIdentity identity, I2PAppContext appContext) throws DataFormatException {
PrivateKey privateKey = identity.getPrivateEncryptionKey();
return appContext.elGamalAESEngine().decrypt(data, privateKey, appContext.sessionKeyManager());
}
/**
* Encrypts data with an email destination's public key.
* @param data
* @param emailDestination
* @param appContext
* @return The encrypted data
*/
// TODO should this method be in this class?
public byte[] encrypt(byte[] data, EmailDestination emailDestination, I2PAppContext appContext) {
PublicKey publicKey = emailDestination.getPublicEncryptionKey();
SessionKey sessionKey = appContext.sessionKeyManager().createSession(publicKey);
return appContext.elGamalAESEngine().encrypt(data, publicKey, sessionKey, PADDED_SIZE);
}
public static Collection<EncryptedEmailPacket> encrypt(Collection<UnencryptedEmailPacket> packets, EmailDestination destination, I2PAppContext appContext) {
Collection<EncryptedEmailPacket> encryptedPackets = new ArrayList<EncryptedEmailPacket>();
for (UnencryptedEmailPacket unencryptedPacket: packets)
encryptedPackets.add(new EncryptedEmailPacket(unencryptedPacket, destination, appContext));
return encryptedPackets;
}
@Override
public Hash getDhtKey() {
return dhtKey;
}
/**
* Returns the value of the "plain-text deletion key" field.
* Storage nodes set this to all zero bytes when the packet is retrieved.
* @return
*/
public UniqueId getPlaintextDeletionKey() {
return deletionKeyPlain;
}
@Override
public byte[] toByteArray() {
ByteArrayOutputStream byteArrayStream = new ByteArrayOutputStream();
DataOutputStream dataStream = new DataOutputStream(byteArrayStream);
try {
writeHeader(dataStream);
dataStream.write(dhtKey.toByteArray());
dataStream.write(deletionKeyPlain.toByteArray());
dataStream.writeShort(encryptedData.length);
dataStream.write(encryptedData);
}
catch (IOException e) {
log.error("Can't write to ByteArrayOutputStream.", e);
}
return byteArrayStream.toByteArray();
}
// Returns the number of bytes in the packet.
// TODO just return content.length+CONST so we don't call toByteArray every time
public int getSize() {
return toByteArray().length;
}
@Override
public String toString() {
return super.toString() + ", DHTkey=" + dhtKey + ", delKeyPln=" + deletionKeyPlain + ", encrLen=" + encryptedData.length;
}
}
Reference in New Issue View Git Blame Copy Permalink