Antireplay on sliding window + SecureRandom

2026-04-18 19:14:09 +03:00 · 2026-02-07 18:26:44 +03:00
parent 5876f0c4d5
commit b9428d9780
12 changed files with 171 additions and 76 deletions
--- a/src/stream/frame.rs
+++ b/src/stream/frame.rs
@@ -5,8 +5,10 @@

 use bytes::{Bytes, BytesMut};
 use std::io::Result;
+use std::sync::Arc;

 use crate::protocol::constants::ProtoTag;
+use crate::crypto::SecureRandom;

 // ============= Frame Types =============

@@ -147,11 +149,11 @@ pub trait FrameCodec: Send + Sync {
 // ============= Codec Factory =============

 /// Create a frame codec for the given protocol tag
-pub fn create_codec(proto_tag: ProtoTag) -> Box<dyn FrameCodec> {
+pub fn create_codec(proto_tag: ProtoTag, rng: Arc<SecureRandom>) -> Box<dyn FrameCodec> {
    match proto_tag {
        ProtoTag::Abridged => Box::new(crate::stream::frame_codec::AbridgedCodec::new()),
        ProtoTag::Intermediate => Box::new(crate::stream::frame_codec::IntermediateCodec::new()),
-        ProtoTag::Secure => Box::new(crate::stream::frame_codec::SecureCodec::new()),
+        ProtoTag::Secure => Box::new(crate::stream::frame_codec::SecureCodec::new(rng)),
    }
 }

--- a/src/stream/frame_codec.rs
+++ b/src/stream/frame_codec.rs
@@ -5,9 +5,11 @@

 use bytes::{Bytes, BytesMut, BufMut};
 use std::io::{self, Error, ErrorKind};
+use std::sync::Arc;
 use tokio_util::codec::{Decoder, Encoder};

 use crate::protocol::constants::ProtoTag;
+use crate::crypto::SecureRandom;
 use super::frame::{Frame, FrameMeta, FrameCodec as FrameCodecTrait};

 // ============= Unified Codec =============
@@ -21,14 +23,17 @@ pub struct FrameCodec {
    proto_tag: ProtoTag,
    /// Maximum allowed frame size
    max_frame_size: usize,
+    /// RNG for secure padding
+    rng: Arc<SecureRandom>,
 }

 impl FrameCodec {
    /// Create a new codec for the given protocol
-    pub fn new(proto_tag: ProtoTag) -> Self {
+    pub fn new(proto_tag: ProtoTag, rng: Arc<SecureRandom>) -> Self {
        Self {
            proto_tag,
            max_frame_size: 16 * 1024 * 1024, // 16MB default
+            rng,
        }
    }
    
@@ -64,7 +69,7 @@ impl Encoder<Frame> for FrameCodec {
        match self.proto_tag {
            ProtoTag::Abridged => encode_abridged(&frame, dst),
            ProtoTag::Intermediate => encode_intermediate(&frame, dst),
-            ProtoTag::Secure => encode_secure(&frame, dst),
+            ProtoTag::Secure => encode_secure(&frame, dst, &self.rng),
        }
    }
 }
@@ -288,9 +293,7 @@ fn decode_secure(src: &mut BytesMut, max_size: usize) -> io::Result<Option<Frame
    Ok(Some(Frame::with_meta(data, meta)))
 }

-fn encode_secure(frame: &Frame, dst: &mut BytesMut) -> io::Result<()> {
-    use crate::crypto::random::SECURE_RANDOM;
-    
+fn encode_secure(frame: &Frame, dst: &mut BytesMut, rng: &SecureRandom) -> io::Result<()> {
    let data = &frame.data;
    
    // Simple ACK: just send data
@@ -303,10 +306,10 @@ fn encode_secure(frame: &Frame, dst: &mut BytesMut) -> io::Result<()> {
    // Generate padding to make length not divisible by 4
    let padding_len = if data.len() % 4 == 0 {
        // Add 1-3 bytes to make it non-aligned
-        (SECURE_RANDOM.range(3) + 1) as usize
+        (rng.range(3) + 1) as usize
    } else {
        // Already non-aligned, can add 0-3
-        SECURE_RANDOM.range(4) as usize
+        rng.range(4) as usize
    };
    
    let total_len = data.len() + padding_len;
@@ -321,7 +324,7 @@ fn encode_secure(frame: &Frame, dst: &mut BytesMut) -> io::Result<()> {
    dst.extend_from_slice(data);
    
    if padding_len > 0 {
-        let padding = SECURE_RANDOM.bytes(padding_len);
+        let padding = rng.bytes(padding_len);
        dst.extend_from_slice(&padding);
    }
    
@@ -445,19 +448,21 @@ impl FrameCodecTrait for IntermediateCodec {
 /// Secure Intermediate protocol codec
 pub struct SecureCodec {
    max_frame_size: usize,
+    rng: Arc<SecureRandom>,
 }

 impl SecureCodec {
-    pub fn new() -> Self {
+    pub fn new(rng: Arc<SecureRandom>) -> Self {
        Self {
            max_frame_size: 16 * 1024 * 1024,
+            rng,
        }
    }
 }

 impl Default for SecureCodec {
    fn default() -> Self {
-        Self::new()
+        Self::new(Arc::new(SecureRandom::new()))
    }
 }

@@ -474,7 +479,7 @@ impl Encoder<Frame> for SecureCodec {
    type Error = io::Error;
    
    fn encode(&mut self, frame: Frame, dst: &mut BytesMut) -> Result<(), Self::Error> {
-        encode_secure(&frame, dst)
+        encode_secure(&frame, dst, &self.rng)
    }
 }

@@ -485,7 +490,7 @@ impl FrameCodecTrait for SecureCodec {
    
    fn encode(&self, frame: &Frame, dst: &mut BytesMut) -> io::Result<usize> {
        let before = dst.len();
-        encode_secure(frame, dst)?;
+        encode_secure(frame, dst, &self.rng)?;
        Ok(dst.len() - before)
    }
    
@@ -506,6 +511,8 @@ mod tests {
    use tokio_util::codec::{FramedRead, FramedWrite};
    use tokio::io::duplex;
    use futures::{SinkExt, StreamExt};
+    use crate::crypto::SecureRandom;
+    use std::sync::Arc;
    
    #[tokio::test]
    async fn test_framed_abridged() {
@@ -541,8 +548,8 @@ mod tests {
    async fn test_framed_secure() {
        let (client, server) = duplex(4096);
        
-        let mut writer = FramedWrite::new(client, SecureCodec::new());
-        let mut reader = FramedRead::new(server, SecureCodec::new());
+        let mut writer = FramedWrite::new(client, SecureCodec::new(Arc::new(SecureRandom::new())));
+        let mut reader = FramedRead::new(server, SecureCodec::new(Arc::new(SecureRandom::new())));
        
        let original = Bytes::from_static(&[1, 2, 3, 4, 5, 6, 7, 8]);
        let frame = Frame::new(original.clone());
@@ -557,8 +564,8 @@ mod tests {
        for proto_tag in [ProtoTag::Abridged, ProtoTag::Intermediate, ProtoTag::Secure] {
            let (client, server) = duplex(4096);
            
-            let mut writer = FramedWrite::new(client, FrameCodec::new(proto_tag));
-            let mut reader = FramedRead::new(server, FrameCodec::new(proto_tag));
+            let mut writer = FramedWrite::new(client, FrameCodec::new(proto_tag, Arc::new(SecureRandom::new())));
+            let mut reader = FramedRead::new(server, FrameCodec::new(proto_tag, Arc::new(SecureRandom::new())));
            
            // Use 4-byte aligned data for abridged compatibility
            let original = Bytes::from_static(&[1, 2, 3, 4, 5, 6, 7, 8]);
@@ -607,7 +614,7 @@ mod tests {
    
    #[test]
    fn test_frame_too_large() {
-        let mut codec = FrameCodec::new(ProtoTag::Intermediate)
+        let mut codec = FrameCodec::new(ProtoTag::Intermediate, Arc::new(SecureRandom::new()))
            .with_max_frame_size(100);
        
        // Create a "frame" that claims to be very large
--- a/src/stream/frame_stream.rs
+++ b/src/stream/frame_stream.rs
@@ -4,8 +4,8 @@ use bytes::{Bytes, BytesMut};
 use std::io::{Error, ErrorKind, Result};
 use tokio::io::{AsyncRead, AsyncWrite, AsyncReadExt, AsyncWriteExt};
 use crate::protocol::constants::*;
-use crate::crypto::crc32;
-use crate::crypto::random::SECURE_RANDOM;
+use crate::crypto::{crc32, SecureRandom};
+use std::sync::Arc;
 use super::traits::{FrameMeta, LayeredStream};

 // ============= Abridged (Compact) Frame =============
@@ -251,11 +251,12 @@ impl<R> LayeredStream<R> for SecureIntermediateFrameReader<R> {
 /// Writer for secure intermediate MTProto framing
 pub struct SecureIntermediateFrameWriter<W> {
    upstream: W,
+    rng: Arc<SecureRandom>,
 }

 impl<W> SecureIntermediateFrameWriter<W> {
-    pub fn new(upstream: W) -> Self {
-        Self { upstream }
+    pub fn new(upstream: W, rng: Arc<SecureRandom>) -> Self {
+        Self { upstream, rng }
    }
 }

@@ -267,8 +268,8 @@ impl<W: AsyncWrite + Unpin> SecureIntermediateFrameWriter<W> {
        }
        
        // Add random padding (0-3 bytes)
-        let padding_len = SECURE_RANDOM.range(4);
-        let padding = SECURE_RANDOM.bytes(padding_len);
+        let padding_len = self.rng.range(4);
+        let padding = self.rng.bytes(padding_len);
        
        let total_len = data.len() + padding_len;
        let len_bytes = (total_len as u32).to_le_bytes();
@@ -454,11 +455,11 @@ pub enum FrameWriterKind<W> {
 }

 impl<W: AsyncWrite + Unpin> FrameWriterKind<W> {
-    pub fn new(upstream: W, proto_tag: ProtoTag) -> Self {
+    pub fn new(upstream: W, proto_tag: ProtoTag, rng: Arc<SecureRandom>) -> Self {
        match proto_tag {
            ProtoTag::Abridged => FrameWriterKind::Abridged(AbridgedFrameWriter::new(upstream)),
            ProtoTag::Intermediate => FrameWriterKind::Intermediate(IntermediateFrameWriter::new(upstream)),
-            ProtoTag::Secure => FrameWriterKind::SecureIntermediate(SecureIntermediateFrameWriter::new(upstream)),
+            ProtoTag::Secure => FrameWriterKind::SecureIntermediate(SecureIntermediateFrameWriter::new(upstream, rng)),
        }
    }
    
@@ -483,6 +484,8 @@ impl<W: AsyncWrite + Unpin> FrameWriterKind<W> {
 mod tests {
    use super::*;
    use tokio::io::duplex;
+    use std::sync::Arc;
+    use crate::crypto::SecureRandom;
    
    #[tokio::test]
    async fn test_abridged_roundtrip() {
@@ -539,7 +542,7 @@ mod tests {
    async fn test_secure_intermediate_padding() {
        let (client, server) = duplex(1024);
        
-        let mut writer = SecureIntermediateFrameWriter::new(client);
+        let mut writer = SecureIntermediateFrameWriter::new(client, Arc::new(SecureRandom::new()));
        let mut reader = SecureIntermediateFrameReader::new(server);
        
        let data = vec![1u8, 2, 3, 4, 5, 6, 7, 8];
@@ -572,7 +575,7 @@ mod tests {
    async fn test_frame_reader_kind() {
        let (client, server) = duplex(1024);
        
-        let mut writer = FrameWriterKind::new(client, ProtoTag::Intermediate);
+        let mut writer = FrameWriterKind::new(client, ProtoTag::Intermediate, Arc::new(SecureRandom::new()));
        let mut reader = FrameReaderKind::new(server, ProtoTag::Intermediate);
        
        let data = vec![1u8, 2, 3, 4];