Verified Commit bd5504de authored 7 years ago by Torsten Grote

Add a MAC to the ACTIVATE message to prevent the introducer to fake them

A fake ACTIVATE message would cause us to activate the transport keys
before the contact has received our auth message,
which would compromise forward secrecy.

parent 0e04044e

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing

briar-api/src/main/java/org/briarproject/briar/api/introduction/IntroductionConstants.java 3 additions, 0 deletions

...project/briar/api/introduction/IntroductionConstants.java
briar-core/src/main/java/org/briarproject/briar/introduction/AbstractProtocolEngine.java 3 additions, 3 deletions

...iarproject/briar/introduction/AbstractProtocolEngine.java
briar-core/src/main/java/org/briarproject/briar/introduction/ActivateMessage.java 8 additions, 1 deletion

.../org/briarproject/briar/introduction/ActivateMessage.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroduceeProtocolEngine.java 54 additions, 48 deletions

...rproject/briar/introduction/IntroduceeProtocolEngine.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroduceeSession.java 138 additions, 110 deletions

...rg/briarproject/briar/introduction/IntroduceeSession.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroducerProtocolEngine.java 1 addition, 1 deletion

...rproject/briar/introduction/IntroducerProtocolEngine.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroductionConstants.java 9 additions, 6 deletions

...riarproject/briar/introduction/IntroductionConstants.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroductionCrypto.java 19 additions, 7 deletions

...g/briarproject/briar/introduction/IntroductionCrypto.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroductionCryptoImpl.java 59 additions, 25 deletions

...iarproject/briar/introduction/IntroductionCryptoImpl.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroductionManagerImpl.java 5 additions, 3 deletions

...arproject/briar/introduction/IntroductionManagerImpl.java
briar-core/src/main/java/org/briarproject/briar/introduction/IntroductionValidator.java 29 additions, 1 deletion

...riarproject/briar/introduction/IntroductionValidator.java
briar-core/src/main/java/org/briarproject/briar/introduction/MessageEncoder.java 2 additions, 1 deletion

...a/org/briarproject/briar/introduction/MessageEncoder.java
briar-core/src/main/java/org/briarproject/briar/introduction/MessageEncoderImpl.java 18 additions, 31 deletions

...g/briarproject/briar/introduction/MessageEncoderImpl.java
briar-core/src/main/java/org/briarproject/briar/introduction/MessageParserImpl.java 2 additions, 1 deletion

...rg/briarproject/briar/introduction/MessageParserImpl.java
briar-core/src/main/java/org/briarproject/briar/introduction/Session.java 2 additions, 2 deletions

...ain/java/org/briarproject/briar/introduction/Session.java
briar-core/src/main/java/org/briarproject/briar/introduction/SessionEncoderImpl.java 37 additions, 24 deletions

...g/briarproject/briar/introduction/SessionEncoderImpl.java
briar-core/src/main/java/org/briarproject/briar/introduction/SessionParserImpl.java 44 additions, 28 deletions

...rg/briarproject/briar/introduction/SessionParserImpl.java
briar-core/src/test/java/org/briarproject/briar/introduction/IntroductionCryptoImplTest.java 26 additions, 10 deletions

...roject/briar/introduction/IntroductionCryptoImplTest.java
briar-core/src/test/java/org/briarproject/briar/introduction/IntroductionIntegrationTest.java 1 addition, 21 deletions

...oject/briar/introduction/IntroductionIntegrationTest.java
briar-core/src/test/java/org/briarproject/briar/introduction/IntroductionValidatorTest.java 15 additions, 5 deletions

...project/briar/introduction/IntroductionValidatorTest.java

with 475 additions and 328 deletions

Please register or to comment