nim-webrtc/webrtc/stun/stun_attributes.nim

# Nim-WebRTC
# Copyright (c) 2024 Status Research & Development GmbH
# Licensed under either of
#  * Apache License, version 2.0, ([LICENSE-APACHE](LICENSE-APACHE))
#  * MIT license ([LICENSE-MIT](LICENSE-MIT))
# at your option.
# This file may not be copied, modified, or distributed except according to
# those terms.

import sequtils, system, typetraits
import binary_serialization,
       stew/[byteutils, objects],
       chronos
import stun_utils

# Some attributes implementation are missing, it might be something to
# add eventually if we want to make this repository work for
# other project than nim-libp2p.
#
# Stun Attribute
# 0                   1                   2                   3
# 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
# +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
# |         Type                  |            Length             |
# +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
# |                         Value (variable)                ....
# +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

type
  RawStunAttribute* = object
    attributeType*: uint16
    length* {.bin_value: it.value.len.}: uint16
    value* {.bin_len: it.length.}: seq[byte]

proc decode*(T: typedesc[RawStunAttribute], cnt: seq[byte]): seq[RawStunAttribute] =
  const pad = @[0, 3, 2, 1]
  var padding = 0
  while padding < cnt.len():
    let attr = Binary.decode(cnt[padding ..^ 1], RawStunAttribute)
    result.add(attr)
    padding += 4 + attr.value.len()
    padding += pad[padding mod 4]

type
  StunAttributeEnum* = enum
    AttrMappedAddress = 0x0001
    AttrChangeRequest = 0x0003 # RFC5780 Nat Behavior Discovery
    AttrSourceAddress = 0x0004 # Deprecated
    AttrChangedAddress = 0x0005 # Deprecated
    AttrUsername = 0x0006
    AttrMessageIntegrity = 0x0008
    AttrErrorCode = 0x0009
    AttrUnknownAttributes = 0x000A
    AttrChannelNumber = 0x000C # RFC5766 TURN
    AttrLifetime = 0x000D # RFC5766 TURN
    AttrXORPeerAddress = 0x0012 # RFC5766 TURN
    AttrData = 0x0013 # RFC5766 TURN
    AttrRealm = 0x0014
    AttrNonce = 0x0015
    AttrXORRelayedAddress = 0x0016 # RFC5766 TURN
    AttrRequestedAddressFamily = 0x0017 # RFC6156
    AttrEvenPort = 0x0018 # RFC5766 TURN
    AttrRequestedTransport = 0x0019 # RFC5766 TURN
    AttrDontFragment = 0x001A # RFC5766 TURN
    AttrMessageIntegritySHA256 = 0x001C # RFC8489 STUN (v2)
    AttrPasswordAlgorithm = 0x001D # RFC8489 STUN (v2)
    AttrUserhash = 0x001E # RFC8489 STUN (v2)
    AttrXORMappedAddress = 0x0020
    AttrReservationToken = 0x0022 # RFC5766 TURN
    AttrPriority = 0x0024 # RFC5245 ICE
    AttrUseCandidate = 0x0025 # RFC5245 ICE
    AttrPadding = 0x0026 # RFC5780 Nat Behavior Discovery
    AttrResponsePort = 0x0027 # RFC5780 Nat Behavior Discovery
    AttrConnectionID = 0x002a # RFC6062 TURN Extensions
    AttrPasswordAlgorithms = 0x8002 # RFC8489 STUN (v2)
    AttrAlternateDomain = 0x8003 # RFC8489 STUN (v2)
    AttrSoftware = 0x8022
    AttrAlternateServer = 0x8023
    AttrCacheTimeout = 0x8027 # RFC5780 Nat Behavior Discovery
    AttrFingerprint = 0x8028
    AttrICEControlled = 0x8029 # RFC5245 ICE
    AttrICEControlling = 0x802A # RFC5245 ICE
    AttrResponseOrigin = 0x802b # RFC5780 Nat Behavior Discovery
    AttrOtherAddress = 0x802C # RFC5780 Nat Behavior Discovery
    AttrOrigin = 0x802F

proc isRequired*(typ: uint16): bool = typ <= 0x7FFF'u16
proc isOptional*(typ: uint16): bool = typ >= 0x8000'u16
proc `==`*(x: uint16, y: StunAttributeEnum): bool = x == y.uint16
proc `==`*(y: StunAttributeEnum, x: uint16): bool = x == y

# Username
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.3

type
  UsernameAttribute* = object
    username*: seq[byte]

proc attributeType*(T: typedesc[UsernameAttribute]): StunAttributeEnum = AttrUsername

proc encode*(T: typedesc[UsernameAttribute], username: seq[byte]): RawStunAttribute =
  let
    userAttr = UsernameAttribute(username: username)
    value = Binary.encode(userAttr)
  result = RawStunAttribute(attributeType: AttrUsername.uint16,
                            length: username.len().uint16,
                            value: value)

proc encode*(T: typedesc[UsernameAttribute], username: string): RawStunAttribute =
  return UsernameAttribute.encode(username.toBytes())

proc decode*(T: typedesc[UsernameAttribute], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Error Code
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.6

type
  ErrorCodeEnum* = enum
    ECUnknownErrorCode = 0
    ECTryAlternate = 300
    ECBadRequest = 400
    ECUnauthorized = 401
    ECUnknownAttribute = 420
    ECStaleNonce = 438
    ECServerError = 500
  ErrorCode* = object
    reserved1: uint16 # should be 0
    reserved2 {.bin_bitsize: 5.}: uint8 # should be 0
    class {.bin_bitsize: 3.}: uint8
    number: uint8
    reason: seq[byte]

proc attributeType*(T: typedesc[ErrorCode]): StunAttributeEnum = AttrErrorCode

proc getErrorCode*(self: ErrorCode): ErrorCodeEnum =
  var res: ErrorCodeEnum
  if not res.checkedEnumAssign(self.class.uint16 * 100 + self.number.uint16):
    return ECUnknownErrorCode
  return res

proc encode*(T: typedesc[ErrorCode], code: ErrorCodeEnum, reason: string = ""): RawStunAttribute =
  let
    ec = T(class: (code.uint16 div 100'u16).uint8,
           number: (code.uint16 mod 100'u16).uint8,
           reason: @[]) # Reason should be encoded in utf-8, binary-serialization cannot do it
    value = Binary.encode(ec)
  result = RawStunAttribute(attributeType: AttrErrorCode.uint16,
                            length: value.len().uint16,
                            value: value)

proc decode*(T: typedesc[ErrorCode], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Unknown Attributes
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.9

type
  UnknownAttributes* = object
    unknownAttr: seq[uint16]

proc attributeType*(T: typedesc[UnknownAttributes]): StunAttributeEnum = AttrUnknownAttributes

proc encode*(T: typedesc[UnknownAttributes], unknownAttr: seq[uint16]): RawStunAttribute =
  let
    ua = T(unknownAttr: unknownAttr)
    value = Binary.encode(ua)
  result = RawStunAttribute(attributeType: AttrUnknownAttributes.uint16,
                            length: value.len().uint16,
                            value: value)

proc decode*(T: typedesc[UnknownAttributes], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Fingerprint
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.5

type
  Fingerprint* = object
    crc32: uint32

proc attributeType*(T: typedesc[Fingerprint]): StunAttributeEnum = AttrFingerprint

proc encode*(T: typedesc[Fingerprint], msg: seq[byte]): RawStunAttribute =
  let value = Binary.encode(T(crc32: crc32(msg) xor 0x5354554e'u32))
  result = RawStunAttribute(attributeType: AttrFingerprint.uint16,
                            length: value.len().uint16,
                            value: value)

proc decode*(T: typedesc[Fingerprint], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Xor Mapped Address
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.2

type
  MappedAddressFamily {.size: 1.} = enum
    MAFIPv4 = 0x01
    MAFIPv6 = 0x02

  XorMappedAddress* = object
    reserved: uint8 # should be 0
    family: MappedAddressFamily
    port: uint16
    address: seq[byte]

proc attributeType*(T: typedesc[XorMappedAddress]): StunAttributeEnum = AttrXORMappedAddress

proc encode*(T: typedesc[XorMappedAddress], ta: TransportAddress,
             tid: array[12, byte]): RawStunAttribute =
  const magicCookie = @[ 0x21'u8, 0x12, 0xa4, 0x42 ]
  let
    (address, family) =
      if ta.family == AddressFamily.IPv4:
        var s = newSeq[uint8](4)
        for i in 0..3:
          s[i] = ta.address_v4[i] xor magicCookie[i]
        (s, MAFIPv4)
      else:
        let magicCookieTid = magicCookie.concat(@tid)
        var s = newSeq[uint8](16)
        for i in 0..15:
          s[i] = ta.address_v6[i] xor magicCookieTid[i]
        (s, MAFIPv6)
    xma = T(family: family, port: ta.port.distinctBase xor 0x2112'u16, address: address)
    value = Binary.encode(xma)
  result = RawStunAttribute(attributeType: AttrXORMappedAddress.uint16,
                            length: value.len().uint16,
                            value: value)

proc decode*(T: typedesc[XorMappedAddress], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Message Integrity
# https://datatracker.ietf.org/doc/html/rfc5389#section-15.4

type
  MessageIntegrity* = object
    msgInt: seq[byte]

proc attributeType*(T: typedesc[MessageIntegrity]): StunAttributeEnum = AttrMessageIntegrity

proc encode*(T: typedesc[MessageIntegrity], msg: seq[byte], key: seq[byte]): RawStunAttribute =
  let value = Binary.encode(T(msgInt: hmacSha1(key, msg)))
  result = RawStunAttribute(attributeType: AttrMessageIntegrity.uint16,
                            length: value.len().uint16, value: value)

proc decode*(T: typedesc[MessageIntegrity], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Priority
# https://datatracker.ietf.org/doc/html/rfc8445#section-7.1.1
# https://datatracker.ietf.org/doc/html/rfc8445#section-5.1.2

type
  Priority* = object
    priority*: uint32

proc attributeType*(T: typedesc[Priority]): StunAttributeEnum = AttrPriority

proc encode*(T: typedesc[Priority], priority: uint32): RawStunAttribute =
  let value = Binary.encode(T(priority: priority))
  result = RawStunAttribute(attributeType: AttrPriority.uint16,
                            length: value.len().uint16, value: value)

proc decode*(T: typedesc[Priority], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Use-Candidate
# https://datatracker.ietf.org/doc/html/rfc8445#section-7.1.2
# https://datatracker.ietf.org/doc/html/rfc8445#section-8.1.1
# Use-Candidate is empty because it's used as a flag

type UseCandidate* = object

proc attributeType*(T: typedesc[UseCandidate]): StunAttributeEnum = AttrUseCandidate

proc encode*(T: typedesc[UseCandidate]): RawStunAttribute =
  RawStunAttribute(attributeType: AttrUseCandidate.uint16, length: 0, value: @[])

proc decode*(T: typedesc[UseCandidate], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

# Ice-Controlling / Ice-Controlled
# https://datatracker.ietf.org/doc/html/rfc8445#section-7.1.3
# https://datatracker.ietf.org/doc/html/rfc8445#section-7.3.1.1

type
  IceControlling* = object
    tieBreaker: uint32

  IceControlled* = object
    tieBreaker: uint32

proc attributeType*(T: typedesc[IceControlling]): StunAttributeEnum = AttrICEControlling

proc attributeType*(T: typedesc[IceControlled]): StunAttributeEnum = AttrICEControlled

proc encode*(T: typedesc[IceControlling], tieBreaker: uint32): RawStunAttribute =
  let value = Binary.encode(T(tieBreaker: tieBreaker))
  result = RawStunAttribute(attributeType: AttrICEControlling.uint16,
                            length: value.len().uint16, value: value)

proc encode*(T: typedesc[IceControlled], tieBreaker: uint32): RawStunAttribute =
  let value = Binary.encode(T(tieBreaker: tieBreaker))
  result = RawStunAttribute(attributeType: AttrICEControlled.uint16,
                            length: value.len().uint16, value: value)

proc decode*(T: typedesc[IceControlling], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)

proc decode*(T: typedesc[IceControlled], rawAttr: RawStunAttribute): T =
  return Binary.decode(rawAttr.value, T)