status-im
/
nim-eth
mirror of https://github.com/status-im/nim-eth.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request #450 from etan-status/reject-whoareyou-len 

reject WHOAREYOU packets with non-empty message
This commit is contained in:
Etan Kissling 2021-12-14 16:22:25 +01:00 committed by GitHub
parent 452f92200c 45387ad4d2
commit 5655bd035c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 19 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
eth/p2p/discoveryv5/encoding.nim
View File

@ -441,13 +441,17 @@ proc decodeMessagePacket(c: var Codec, fromAddr: Address, nonce: AESGCMNonce,
messageOpt: some(message), requestNonce: nonce, srcId: srcId)) messageOpt: some(message), requestNonce: nonce, srcId: srcId))
proc decodeWhoareyouPacket(c: var Codec, nonce: AESGCMNonce, proc decodeWhoareyouPacket(c: var Codec, nonce: AESGCMNonce,
iv, header: openArray[byte]): DecodeResult[Packet] = iv, header, ct: openArray[byte]): DecodeResult[Packet] =
# TODO improve this # TODO improve this
let authdata = header[staticHeaderSize..header.high()] let authdata = header[staticHeaderSize..header.high()]
# We now know the exact size that the authdata should be # We now know the exact size that the authdata should be
if authdata.len != idNonceSize + sizeof(uint64): if authdata.len != idNonceSize + sizeof(uint64):
return err("Invalid header length for whoareyou packet") return err("Invalid header length for whoareyou packet")
# The `message` part of WHOAREYOU packets is always empty.
if ct.len != 0:
return err("Invalid message length for whoareyou packet")
var idNonce: IdNonce var idNonce: IdNonce
copyMem(addr idNonce[0], unsafeAddr authdata[0], idNonceSize) copyMem(addr idNonce[0], unsafeAddr authdata[0], idNonceSize)
let whoareyou = WhoareyouData(requestNonce: nonce, idNonce: idNonce, let whoareyou = WhoareyouData(requestNonce: nonce, idNonce: idNonce,
@ -468,7 +472,7 @@ proc decodeHandshakePacket(c: var Codec, fromAddr: Address, nonce: AESGCMNonce,
# a valid message and thus we could increase here to the size of the smallest # a valid message and thus we could increase here to the size of the smallest
# message possible. # message possible.
if ct.len < gcmTagSize: if ct.len < gcmTagSize:
return err("Invalid message length for ordinary message packet") return err("Invalid message length for handshake message packet")
let let
authdata = header[staticHeaderSize..header.high()] authdata = header[staticHeaderSize..header.high()]
@ -580,9 +584,9 @@ proc decodePacket*(c: var Codec, fromAddr: Address, input: openArray[byte]):
input.toOpenArray(ivSize + header.len, input.high)) input.toOpenArray(ivSize + header.len, input.high))
of Whoareyou: of Whoareyou:
# Header size got checked in decode header
return decodeWhoareyouPacket(c, staticHeader.nonce, return decodeWhoareyouPacket(c, staticHeader.nonce,
input.toOpenArray(0, ivSize - 1), header) input.toOpenArray(0, ivSize - 1), header,
input.toOpenArray(ivSize + header.len, input.high))
of HandshakeMessage: of HandshakeMessage:
return decodeHandshakePacket(c, fromAddr, staticHeader.nonce, return decodeHandshakePacket(c, fromAddr, staticHeader.nonce,

12
tests/p2p/test_discoveryv5_encoding.nim
View File

@ -289,7 +289,8 @@ suite "Discovery v5.1 Packet Encodings Test Vectors":
codecB.sessions.store(nodeA.id, nodeA.address.get(), codecB.sessions.store(nodeA.id, nodeA.address.get(),
hexToByteArray[aesKeySize](readKey), hexToByteArray[aesKeySize](dummyKey)) hexToByteArray[aesKeySize](readKey), hexToByteArray[aesKeySize](dummyKey))
let decoded = codecB.decodePacket(nodeA.address.get(), hexToSeqByte(encodedPacket)) let decoded = codecB.decodePacket(nodeA.address.get(),
hexToSeqByte(encodedPacket))
check: check:
decoded.isOK() decoded.isOK()
decoded.get().messageOpt.isSome() decoded.get().messageOpt.isSome()
@ -319,6 +320,9 @@ suite "Discovery v5.1 Packet Encodings Test Vectors":
decoded.get().whoareyou.recordSeq == whoareyouEnrSeq decoded.get().whoareyou.recordSeq == whoareyouEnrSeq
decoded.get().whoareyou.challengeData == hexToSeqByte(whoareyouChallengeData) decoded.get().whoareyou.challengeData == hexToSeqByte(whoareyouChallengeData)
codecB.decodePacket(nodeA.address.get(),
hexToSeqByte(encodedPacket & "00")).isErr()
test "Ping Handshake Message Packet": test "Ping Handshake Message Packet":
const const
pingReqId = "0x00000001" pingReqId = "0x00000001"
@ -362,6 +366,9 @@ suite "Discovery v5.1 Packet Encodings Test Vectors":
decoded.get().message.ping.enrSeq == pingEnrSeq decoded.get().message.ping.enrSeq == pingEnrSeq
decoded.get().node.isNone() decoded.get().node.isNone()
codecB.decodePacket(nodeA.address.get(),
hexToSeqByte(encodedPacket & "00")).isErr()
test "Ping Handshake Message Packet with ENR": test "Ping Handshake Message Packet with ENR":
const const
pingReqId = "0x00000001" pingReqId = "0x00000001"
@ -409,6 +416,9 @@ suite "Discovery v5.1 Packet Encodings Test Vectors":
decoded.get().message.ping.enrSeq == pingEnrSeq decoded.get().message.ping.enrSeq == pingEnrSeq
decoded.get().node.isSome() decoded.get().node.isSome()
codecB.decodePacket(nodeA.address.get(),
hexToSeqByte(encodedPacket & "00")).isErr()
suite "Discovery v5.1 Additional Encode/Decode": suite "Discovery v5.1 Additional Encode/Decode":
test "Encryption/Decryption": test "Encryption/Decryption":
let let