jfinn
/
ljm_j1
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

e2ee: sync key ring size and packet format 

this uses the full four bits in the wire format. The wire format
looses the (currently not implemented) extensibility with variable
length keys.
dev1
Philipp Hancke 5 years ago
parent
f1a62f7cb9
commit
00c8cfad98
2 changed files with 6 additions and 5 deletions
Unified View Show Diff Stats
  1. 1
    1
      doc/e2ee.md
  2. 5
    4
      modules/e2ee/Context.js

+ 1
- 1
doc/e2ee.md View File

26 
    +^+-------------------------------------------------------+ +
 26 
    +^+-------------------------------------------------------+ +
27 
    | |                 Authentication Tag                    | |
 27 
    | |                 Authentication Tag                    | |
28 
    | +---------------------------------------+-+-+-+-+-+-+-+-+ |
 28 
    | +---------------------------------------+-+-+-+-+-+-+-+-+ |
29 
-   | |    CTR... (length=LEN + 1)            |S|LEN  |0| KID | |
29 
+   | |    CTR... (length=LEN + 1)            |S|LEN  |KID    | |
30 
    | +---------------------------------------+-+-+-+-+-+-+-+-+^|
 30 
    | +---------------------------------------+-+-+-+-+-+-+-+-+^|
31 
    |                                                           |
 31 
    |                                                           |
32 
    +----+Encrypted Portion            Authenticated Portion+---+
 32 
    +----+Encrypted Portion            Authenticated Portion+---+

+ 5
- 4
modules/e2ee/Context.js View File

5 
 import { isArrayEqual } from './utils';
 5 
 import { isArrayEqual } from './utils';
6
6
7 
 // We use a ringbuffer of keys so we can change them and still decode packets that were
 7 
 // We use a ringbuffer of keys so we can change them and still decode packets that were
8 
-// encrypted with an old key.
9 
-const keyRingSize = 3;
8 
+// encrypted with an old key. We use a size of 16 which corresponds to the four bits
9 
+// in the frame trailer.
10 
+const keyRingSize = 16;
10
11
11 
 // We copy the first bytes of the VP8 payload unencrypted.
 12 
 // We copy the first bytes of the VP8 payload unencrypted.
12 
 // For keyframes this is 10 bytes, for non-keyframes (delta) 3. See
 13 
 // For keyframes this is 10 bytes, for non-keyframes (delta) 3. See
129 
             // but we put it at the end.
 130 
             // but we put it at the end.
130 
             //                                             0 1 2 3 4 5 6 7
 131 
             //                                             0 1 2 3 4 5 6 7
131 
             // ---------+---------------------------------+-+-+-+-+-+-+-+-+
 132 
             // ---------+---------------------------------+-+-+-+-+-+-+-+-+
132 
-            // payload  |    CTR... (length=LEN)          |S|LEN  |0| KID |
133 
+            // payload  |    CTR... (length=LEN)          |S|LEN  |KID    |
133 
             // ---------+---------------------------------+-+-+-+-+-+-+-+-+
 134 
             // ---------+---------------------------------+-+-+-+-+-+-+-+-+
134 
             const counter = new Uint8Array(16);
 135 
             const counter = new Uint8Array(16);
135 
             const counterView = new DataView(counter.buffer);
 136 
             const counterView = new DataView(counter.buffer);
210 
      */
 211 
      */
211 
     async decodeFunction(encodedFrame, controller) {
 212 
     async decodeFunction(encodedFrame, controller) {
212 
         const data = new Uint8Array(encodedFrame.data);
 213 
         const data = new Uint8Array(encodedFrame.data);
213 
-        const keyIndex = data[encodedFrame.data.byteLength - 1] & 0x7;
214 
+        const keyIndex = data[encodedFrame.data.byteLength - 1] & 0xf; // lower four bits.
214
215
215 
         if (this._cryptoKeyRing[keyIndex]) {
 216 
         if (this._cryptoKeyRing[keyIndex]) {
216 
             const counterLength = 1 + ((data[encodedFrame.data.byteLength - 1] >> 4) & 0x7);
 217 
             const counterLength = 1 + ((data[encodedFrame.data.byteLength - 1] >> 4) & 0x7);

Write Preview
Loading…
Cancel
Save