Loading hash-table.fs +3 −1 Original line number Diff line number Diff line Loading @@ -131,6 +131,8 @@ warnings ! : #. ( hash -- ) ['] #.entry #map ; warnings ! ' Variable alias hash: \ test: move dictionary to hash 0 [IF] Loading net2o-addr.fs +3 −3 Original line number Diff line number Diff line Loading @@ -112,13 +112,13 @@ User dest-0key> \ pointer to dest-0key User dest-0key< \ pointer to obtained dest-0key : addr>6sock ( -- ) host-key sec@ dest-0key< sec! host-key sec@ 2dup lastaddr# $! dest-0key< sec! host-portv6 w@ sockaddr1 port be-w! host-ipv6 sockaddr1 sin6_addr ip6! host-route $@ !temp-addr ; : addr>4sock ( -- ) host-key sec@ dest-0key< sec! host-key sec@ 2dup lastaddr# $! dest-0key< sec! host-portv4 w@ sockaddr1 port be-w! host-ipv4 be-ul@ sockaddr1 ipv4! host-route $@ !temp-addr ; Loading Loading @@ -223,7 +223,7 @@ also net2o-base [: cmd$ $! return-address $10 0 -skip $, addr-route ;] gen-cmd$ ; previous : >sockaddr ( -- addr len ) return-address be@ routes #.key $@ .sockaddr ; return-address be@ routes# #.key $@ .sockaddr ; 0 [IF] Local Variables: Loading net2o-connect.fs +4 −4 Original line number Diff line number Diff line Loading @@ -80,7 +80,7 @@ $30 net2o: tmpnest ( $:string -- ) \g nested (temporary encrypted) command \g cose a opened tmpnest, and add the necessary stuff nest-stack $[]# IF ]tmpnest THEN ; +net2o: close-encnest ( -- ) \g cose a opened tmpnest, and add the necessary stuff \g cose a opened encnest, and add the necessary stuff nest-stack $[]# IF ]encnest THEN ; +net2o: new-data ( addr addr u -- ) \g create new data mapping Loading Loading @@ -139,13 +139,13 @@ net2o-base net2o:update-key ; +net2o: gen-ivs ( $:string -- ) \g generate IVs $> tmp-ivs sec! [ ivs-val receive-val or ]L validated or! ; +net2o: set-cmd0key ( $:string -- ) \g set key for reply $> dup ?keysize your-0key sec! ; +net2o: addr-key! ( $:string -- ) \g set key for reply $> dup ?keysize lastaddr# cell+ $! ; : cookie, ( xtd xtto -- ) add-cookie lit, set-cookie ; : #request, ( -- ) ulit, request-done ; : request, ( -- ) next-request #request, ; : 0key, ( -- ) my-0key sec@ $, set-cmd0key ; : 0key, ( -- ) my-0key sec@ sec$, addr-key! ; : gen-punch ( -- ) nat( ." gen punches" forth:cr ) my-addr$ [: -sig nat( ticks .ticks ." gen punch: " 2dup .addr$ forth:cr ) $, punch ;] $[]map ; Loading net2o-crypt.fs +20 −3 Original line number Diff line number Diff line Loading @@ -21,7 +21,8 @@ keypack# key-salt# + key-cksum# + Constant keypack-all# key-salt# key-cksum# + Constant wrapper# Variable my-0key Variable your-0key : your-0key ( -- addr u ) o IF dest-0key sec@ ELSE lastaddr# cell+ $@ THEN ; user-o keytmp \ storage for secure temporary keys Loading Loading @@ -97,8 +98,16 @@ init-keybuf state# rng$ mykey swap move genkey( ." mykey: " mykey state# xtype cr ) ; 0 Value header-key 0 Value header-your-key $20 buffer: dummy-buf : init-my0key ( -- ) no0key( EXIT ) keysize rng$ my-0key sec! ; no0key( EXIT ) keysize rng$ my-0key sec! kalloc64 dup to header-key $40 erase kalloc64 dup to header-your-key $40 erase my-0key sec@ header-key swap move header-key dummy-buf dup $C tf_encrypt_256 ( sets tweaks ) ; : ?new-mykey ( -- ) last-mykey 64@ ticker 64@ 64- 64-0< IF init-mykey THEN ; Loading Loading @@ -193,6 +202,14 @@ scope{ mapc : decrypt-pw$ ( addr u1 key u2 -- addr' u' flag ) 2over pw-setup >r crypt-key-init r> pw-diffuse key-cksum# - 2dup 0 c:decrypt+auth ; \ encrypt/decrypt header : header-encrypt ( addr -- ) your-0key header-your-key swap move header-your-key swap dup $C tf_encrypt_256 ; : header-decrypt ( addr -- ) header-key swap dup $0 tf_decrypt_256 ; \ encrypt with own key : mykey-encrypt$ ( addr u -- ) +calc Loading Loading @@ -229,7 +246,7 @@ scope{ mapc : outbuf0-encrypt ( -- ) +calc outbuf mapaddr le-64@ outbuf hdrflags le-uw@ addr>assembly o IF dest-0key ELSE your-0key THEN sec@ set-0key your-0key set-0key outbuf packet-data +cryptsu outbuf 1+ c@ c:encrypt+auth +enc ; Loading net2o-helper.fs +3 −2 Original line number Diff line number Diff line Loading @@ -153,7 +153,7 @@ event: :>do-beacon ( addr -- ) : ?-beacon ( -- ) \G if we don't know that address, send a reply net2o-sock sockaddr alen @ routes #key -1 = IF s" !" ELSE s" ." THEN sockaddr alen @ routes# #key -1 = IF s" !" ELSE s" ." THEN beacon( ticks .ticks ." Send '" 2dup type ." ' reply to: " sockaddr alen @ .address forth:cr ) 0 sockaddr alen @ sendto drop +send ; : !-beacon ( -- ) Loading Loading @@ -225,7 +225,8 @@ User hostc$ \ check for this hostname connect( ." insert host: " temp-addr .addr-path cr ) ret-addr $10 0 skip nip 0= IF temp-addr ret-addr $10 move dest-0key< sec@ dup IF dest-0key> @ sec! ELSE 2drop THEN dest-0key< sec@ dup IF 2dup lastaddr# cell+ $! dest-0key> @ sec! ELSE 2drop THEN THEN drop true ;] addr>sock ; : insert-addr$ ( addr u -- flag ) dest-0key dest-0key> ! Loading Loading
hash-table.fs +3 −1 Original line number Diff line number Diff line Loading @@ -131,6 +131,8 @@ warnings ! : #. ( hash -- ) ['] #.entry #map ; warnings ! ' Variable alias hash: \ test: move dictionary to hash 0 [IF] Loading
net2o-addr.fs +3 −3 Original line number Diff line number Diff line Loading @@ -112,13 +112,13 @@ User dest-0key> \ pointer to dest-0key User dest-0key< \ pointer to obtained dest-0key : addr>6sock ( -- ) host-key sec@ dest-0key< sec! host-key sec@ 2dup lastaddr# $! dest-0key< sec! host-portv6 w@ sockaddr1 port be-w! host-ipv6 sockaddr1 sin6_addr ip6! host-route $@ !temp-addr ; : addr>4sock ( -- ) host-key sec@ dest-0key< sec! host-key sec@ 2dup lastaddr# $! dest-0key< sec! host-portv4 w@ sockaddr1 port be-w! host-ipv4 be-ul@ sockaddr1 ipv4! host-route $@ !temp-addr ; Loading Loading @@ -223,7 +223,7 @@ also net2o-base [: cmd$ $! return-address $10 0 -skip $, addr-route ;] gen-cmd$ ; previous : >sockaddr ( -- addr len ) return-address be@ routes #.key $@ .sockaddr ; return-address be@ routes# #.key $@ .sockaddr ; 0 [IF] Local Variables: Loading
net2o-connect.fs +4 −4 Original line number Diff line number Diff line Loading @@ -80,7 +80,7 @@ $30 net2o: tmpnest ( $:string -- ) \g nested (temporary encrypted) command \g cose a opened tmpnest, and add the necessary stuff nest-stack $[]# IF ]tmpnest THEN ; +net2o: close-encnest ( -- ) \g cose a opened tmpnest, and add the necessary stuff \g cose a opened encnest, and add the necessary stuff nest-stack $[]# IF ]encnest THEN ; +net2o: new-data ( addr addr u -- ) \g create new data mapping Loading Loading @@ -139,13 +139,13 @@ net2o-base net2o:update-key ; +net2o: gen-ivs ( $:string -- ) \g generate IVs $> tmp-ivs sec! [ ivs-val receive-val or ]L validated or! ; +net2o: set-cmd0key ( $:string -- ) \g set key for reply $> dup ?keysize your-0key sec! ; +net2o: addr-key! ( $:string -- ) \g set key for reply $> dup ?keysize lastaddr# cell+ $! ; : cookie, ( xtd xtto -- ) add-cookie lit, set-cookie ; : #request, ( -- ) ulit, request-done ; : request, ( -- ) next-request #request, ; : 0key, ( -- ) my-0key sec@ $, set-cmd0key ; : 0key, ( -- ) my-0key sec@ sec$, addr-key! ; : gen-punch ( -- ) nat( ." gen punches" forth:cr ) my-addr$ [: -sig nat( ticks .ticks ." gen punch: " 2dup .addr$ forth:cr ) $, punch ;] $[]map ; Loading
net2o-crypt.fs +20 −3 Original line number Diff line number Diff line Loading @@ -21,7 +21,8 @@ keypack# key-salt# + key-cksum# + Constant keypack-all# key-salt# key-cksum# + Constant wrapper# Variable my-0key Variable your-0key : your-0key ( -- addr u ) o IF dest-0key sec@ ELSE lastaddr# cell+ $@ THEN ; user-o keytmp \ storage for secure temporary keys Loading Loading @@ -97,8 +98,16 @@ init-keybuf state# rng$ mykey swap move genkey( ." mykey: " mykey state# xtype cr ) ; 0 Value header-key 0 Value header-your-key $20 buffer: dummy-buf : init-my0key ( -- ) no0key( EXIT ) keysize rng$ my-0key sec! ; no0key( EXIT ) keysize rng$ my-0key sec! kalloc64 dup to header-key $40 erase kalloc64 dup to header-your-key $40 erase my-0key sec@ header-key swap move header-key dummy-buf dup $C tf_encrypt_256 ( sets tweaks ) ; : ?new-mykey ( -- ) last-mykey 64@ ticker 64@ 64- 64-0< IF init-mykey THEN ; Loading Loading @@ -193,6 +202,14 @@ scope{ mapc : decrypt-pw$ ( addr u1 key u2 -- addr' u' flag ) 2over pw-setup >r crypt-key-init r> pw-diffuse key-cksum# - 2dup 0 c:decrypt+auth ; \ encrypt/decrypt header : header-encrypt ( addr -- ) your-0key header-your-key swap move header-your-key swap dup $C tf_encrypt_256 ; : header-decrypt ( addr -- ) header-key swap dup $0 tf_decrypt_256 ; \ encrypt with own key : mykey-encrypt$ ( addr u -- ) +calc Loading Loading @@ -229,7 +246,7 @@ scope{ mapc : outbuf0-encrypt ( -- ) +calc outbuf mapaddr le-64@ outbuf hdrflags le-uw@ addr>assembly o IF dest-0key ELSE your-0key THEN sec@ set-0key your-0key set-0key outbuf packet-data +cryptsu outbuf 1+ c@ c:encrypt+auth +enc ; Loading
net2o-helper.fs +3 −2 Original line number Diff line number Diff line Loading @@ -153,7 +153,7 @@ event: :>do-beacon ( addr -- ) : ?-beacon ( -- ) \G if we don't know that address, send a reply net2o-sock sockaddr alen @ routes #key -1 = IF s" !" ELSE s" ." THEN sockaddr alen @ routes# #key -1 = IF s" !" ELSE s" ." THEN beacon( ticks .ticks ." Send '" 2dup type ." ' reply to: " sockaddr alen @ .address forth:cr ) 0 sockaddr alen @ sendto drop +send ; : !-beacon ( -- ) Loading Loading @@ -225,7 +225,8 @@ User hostc$ \ check for this hostname connect( ." insert host: " temp-addr .addr-path cr ) ret-addr $10 0 skip nip 0= IF temp-addr ret-addr $10 move dest-0key< sec@ dup IF dest-0key> @ sec! ELSE 2drop THEN dest-0key< sec@ dup IF 2dup lastaddr# cell+ $! dest-0key> @ sec! ELSE 2drop THEN THEN drop true ;] addr>sock ; : insert-addr$ ( addr u -- flag ) dest-0key dest-0key> ! Loading
