saltyrtc / saltyrtc-client-java Goto Github PK
View Code? Open in Web Editor NEWSaltyRTC Java implementation.
License: Apache License 2.0
saltyrtc-client-java's People
Contributors
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
Stargazers
Watchers
saltyrtc-client-java's Issues
Signaling messages after handshake encrypted twice
Signaling messages after the handshake are encrypted twice, because the Signaling.send method passes already encrypted bytes to the Task.sendSignalingMessage method where they're encrypted again.
We can't simply send the bytes through the task channel as-is, because the nonce structure is different. Therefore the client library needs to pass unencrypted message bytes to the task.
Optimization: Keep connection open after send error
After receiving a send error (e.g. in (InitiatorSignaling|ResponderSignaling).handleSendError), maybe we could keep the connection open and wait for a reconnect.
Create CryptoProvider interface
Create an interface that proxies all NaCl calls, so that users can use their own favorite implementation.
Depends on #89 (default methods).
Properly handle protocol errors
https://github.com/saltyrtc/saltyrtc-meta/blob/master/Protocol.md#client-to-client-messages
Compared to client-to-server messages, protocol errors for client-to-client message MUST be handled differently. In case that any check fails, the procedure below MUST be followed unless otherwise stated:
- If the other client is not authenticated yet, an initiator SHALL drop the corresponding responder by sending a 'drop-responder' message with the responder's address in the id field to the server and a close code of 3001 (Protocol Error) in the reason field. A responder SHALL close the connection to the server with a close code of 3001.
- If the other client is authenticated and the error cause is not a 'send-error' message from the server, the client SHALL send a 'close' message to the other client containing the close code 3001 (Protocol Error). In any case, both clients SHALL terminate the connection to the server (normal close code).
Add KeyStore(String, String) constructor
Convert to hex automatically
Initiator should send drop-responder to the server, not the peer
This unfortunately leads to a protocol error if an initiator connects to a path with two lingering responders.
Oops. 😂
Complete documentation
Is this client thread-safe?
I get null pointer exceptions when I connect/disconnect simultaneously:
[ConnectThread] ERROR SaltyRTC.ISignaling - WebSocket callback error: java.lang.NullPointerException
java.lang.NullPointerException
at org.saltyrtc.client.signaling.Signaling$1.onConnectError(Signaling.java:330)
at com.neovisionaries.ws.client.ListenerManager.callOnConnectError(ListenerManager.java:206)
at com.neovisionaries.ws.client.ConnectThread.handleError(ConnectThread.java:46)
at com.neovisionaries.ws.client.ConnectThread.runMain(ConnectThread.java:36)
at com.neovisionaries.ws.client.WebSocketThread.run(WebSocketThread.java:45)
It's this code:
Following test:
@Test
public void testConnectDisconnect() throws Exception {
// Create peers
final SSLContext sslContext = SSLContextHelper.getSSLContext();
final SaltyRTC initiator = new SaltyRTCBuilder(this.cryptoProvider)
.connectTo(Config.SALTYRTC_HOST, Config.SALTYRTC_PORT, sslContext)
.withKeyStore(new KeyStore(this.cryptoProvider))
.usingTasks(new Task[]{ new DummyTask() })
.asInitiator();
final SaltyRTC responder = new SaltyRTCBuilder(this.cryptoProvider)
.connectTo(Config.SALTYRTC_HOST, Config.SALTYRTC_PORT, sslContext)
.withKeyStore(new KeyStore(this.cryptoProvider))
.usingTasks(new Task[]{ new DummyTask() })
.initiatorInfo(initiator.getPublicPermanentKey(), initiator.getAuthToken())
.asResponder();
for (int i = 0; i <= 200; i++) {
new Thread(new Runnable() {
@Override
public void run() {
try {
initiator.connect();
initiator.disconnect();
} catch (ConnectionException e) {
e.printStackTrace();
}
}
}).start();
}
}Handle WebSocket errors
https://travis-ci.org/saltyrtc/saltyrtc-client-java/jobs/140543672
If sending of a handshake message fails, it should be re-sent somehow.
Precalculate shared key
When encrypting and decrypting, the shared key should be calculated once. Currently, it is calculated every time data is being encrypted or decrypted.
Stop logging private key
Close Websocket on Handover
I think this isn't being done yet.
Drop dead responders after 60 seconds
From the spec:
Furthermore, the initiator MUST drop new responders that have not sent any messages to the initiator after 60 seconds.
Switch to Java 8
...for the next major release.
Make use of its features.
Events
Current events:
- ConnectedEvent
- ConnectionClosedEvent
- ConnectionErrorEvent
- HandoverEvent
- DataEvent
We should probably replace them with the following:
- SignalingStateChangedEvent
- SignalingChannelChangedEvent
- DataEvent
Handover to data channel
Doesn't seem to work properly yet:
SaltyRTC.RSignaling: Trying to send data message, but connection state is CLOSED
This was probably a message that SaltyRTC was trying to send through the already closed websocket.
Check for TODOs
Handle them or create issues.
Update websocket subprotocol
Set protocol to v1.saltyrtc.org
✨
NPE on disconnect
11-02 16:22:22.246 31806-31806/org.saltyrtc.demo.app E/AndroidRuntime: FATAL EXCEPTION: main
Process: org.saltyrtc.demo.app, PID: 31806
java.lang.NullPointerException: Attempt to invoke virtual method 'com.neovisionaries.ws.client.WebSocket com.neovisionaries.ws.client.WebSocket.disconnect(int)' on a null object reference
at org.saltyrtc.client.signaling.Signaling.disconnect(Signaling.java:215)
at org.saltyrtc.client.signaling.Signaling.disconnect(Signaling.java:232)
at org.saltyrtc.client.SaltyRTC.disconnect(SaltyRTC.java:135)
at org.saltyrtc.demo.app.MainActivity.stop(MainActivity.java:253)
at org.saltyrtc.demo.app.MainActivity$3$1.run(MainActivity.java:171)
at android.os.Handler.handleCallback(Handler.java:739)
at android.os.Handler.dispatchMessage(Handler.java:95)
at android.os.Looper.loop(Looper.java:168)
at android.app.ActivityThread.main(ActivityThread.java:5845)
at java.lang.reflect.Method.invoke(Native Method)
at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:797)
at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:687)Websocket timeout
I've seen this exception more than once:
SaltyRTC.RSigna: A WebSocket connect error occured: Failed to connect to '<domain>:443': failed to connect to <domain>/<ipv6> (port 443) after 2000ms
com.neovisionaries.ws.client.WebSocketException: Failed to connect to '<domain>:443': failed to connect to <domain>/<ipv6> (port 443) after 2000ms
at com.neovisionaries.ws.client.SocketConnector.doConnect(SocketConnector.java:119)
at com.neovisionaries.ws.client.SocketConnector.connect(SocketConnector.java:81)
at com.neovisionaries.ws.client.WebSocket.connect(WebSocket.java:2031)
at com.neovisionaries.ws.client.ConnectThread.run(ConnectThread.java:37)
Caused by: java.net.SocketTimeoutException: failed to connect to <domain>/<ipv6> (port 443) after 2000ms
at libcore.io.IoBridge.connectErrno(IoBridge.java:169)
at libcore.io.IoBridge.connect(IoBridge.java:122)
at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:183)
at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:456)
at java.net.Socket.connect(Socket.java:882)
at com.neovisionaries.ws.client.SocketConnector.doConnect(SocketConnector.java:110)
at com.neovisionaries.ws.client.SocketConnector.connect(SocketConnector.java:81)
at com.neovisionaries.ws.client.WebSocket.connect(WebSocket.java:2031)
at com.neovisionaries.ws.client.ConnectThread.run(ConnectThread.java:37)
SaltyRTC.RSigna: Could not connect to websocket: Failed to connect to '<domain>:443': failed to connect to <domain>/<ipv6> (port 443) after 2000ms- Timeout should be longer than 2000ms by default
- Timeout should be configurable by the user application
- Maybe add a retry, or at least pass the failed state up to the user application
Avoid WebSocket internal close codes
Implement changes from saltyrtc/saltyrtc-meta#111
Add support for 'disconnected' messages
Add EventRegistry.clearAll()
Should remove all event handlers.
Verify against Spec
Go through spec and make sure that everything is implemented correctly.
Websocket: onBinaryMessage can happen before onConnected
11-16 13:11:04.671 7402-7862/ch.threema.app D/Threema:SessionConnectionContext[0]: Signaling state changed to WS_CONNECTING
11-16 13:11:04.673 7402-7862/ch.threema.app D/Threema:Webclient Session Wakeup: Webclient session started
11-16 13:11:04.942 7402-7886/ch.threema.app D/SaltyRTC.RSignaling: New binary message (81 bytes)
11-16 13:11:04.944 7402-7886/ch.threema.app E/SaltyRTC.RSignaling: Protocol error: Invalid incoming message: Cannot validate message nonce in signaling state WS_CONNECTING
11-16 13:11:04.944 7402-7886/ch.threema.app W/System.err: org.saltyrtc.client.exceptions.ValidationError: Cannot validate message nonce in signaling state WS_CONNECTING
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at org.saltyrtc.client.signaling.Signaling.validateNonceSource(Signaling.java:951)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at org.saltyrtc.client.signaling.Signaling.validateNonce(Signaling.java:900)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at org.saltyrtc.client.signaling.Signaling.access$700(Signaling.java:78)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at org.saltyrtc.client.signaling.Signaling$2.onBinaryMessage(Signaling.java:380)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ListenerManager.callOnBinaryMessage(ListenerManager.java:368)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ReadingThread.callOnBinaryMessage(ReadingThread.java:272)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ReadingThread.handleBinaryFrame(ReadingThread.java:992)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ReadingThread.handleFrame(ReadingThread.java:751)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ReadingThread.main(ReadingThread.java:110)
11-16 13:11:04.952 7402-7886/ch.threema.app W/System.err: at com.neovisionaries.ws.client.ReadingThread.run(ReadingThread.java:66)
11-16 13:11:04.952 7402-7886/ch.threema.app D/Threema:SessionConnectionContext[0]: Signaling state changed to CLOSING
I'm not sure how that can happen, probably a race condition, but let's add a workaround for that.
Update drop-responder message
- The 'drop-responder' message has been changed. An initiator MAY now add a reason field to a 'drop-responder' message the server SHALL close the connection to the corresponding responder with. That field contains a close code described here
- When to use the reason field has been described here.
Drop inactive responders
Support Ping Interval
Upgrade nv-websocket-client
Remove Task.onPeerHandshakeDone()
This is redundant with the signaling state changing to TASK.
Mitigating MITM between Client and Server
See changes from saltyrtc/saltyrtc-meta#47
How to connect clients across NAT?
How to connect clients across NAT?
Client 1 -> Private IP 1 (Initiator)
Client 2 -> Private IP 2 (Receiver)
Also, how is ICE server configured?
Reduce copying and consistently use ByteBuffer
Support application message
Update 'send-error' message
Further information can be found here
Discussion in saltyrtc/saltyrtc-meta#19 and saltyrtc/saltyrtc-meta#40
Handover event is never used?
Allow SaltyRTC server endpoint to be dynamic
Implement WebRTC Task
The WebRTC task spec should now be stable and is ready to be implemented.
ERROR SaltyRTC.RSignaling - No shared sub-protocol could be found
Why does this come? ERROR SaltyRTC.RSignaling - No shared sub-protocol could be found
public static String HOST = "server.saltyrtc.org";
public static int PORT = 9287;
public static String STUN_SERVER = "stun.services.mozilla.com";
final SSLContext sslContext = SSLContext.getInstance("SSL");
sslContext.init(null, trustAllCerts, new java.security.SecureRandom());
final SaltyRTC client = new SaltyRTCBuilder()
.connectTo(HOST, PORT, sslContext)
.withKeyStore(new KeyStore())
.withPingInterval(60)
.withServerKey(TRUSTED_KEY)
.usingTasks(new Task[] { new PingPongTask() })
.asInitiator();
final SaltyRTC client2 = new SaltyRTCBuilder()
.connectTo(HOST, PORT, sslContext)
.withKeyStore(new KeyStore())
.withPingInterval(60)
.initiatorInfo(client.getPublicPermanentKey(), client.getAuthToken())
.usingTasks(new Task[] { new PingPongTask() })
.asResponder();
try {
client.connect();
client2.connect();
} catch (ConnectionException ex) {
java.util.logging.Logger.getLogger(RTCConnectApp.class.getName()).log(Level.SEVERE, null, ex);
}Migrate to CircleCI
Static analysis
Go through all warnings.
Refactor signaling class
There's some state checking being done, e.g. if (receiver == SALTYRTC_ADDR_SERVER) .... Replace that with polymorphism based on the new Server class.
Update 'client-auth' Message
There is a new field called subprotocols, see here for details.
Client-to-Client Messages/Behaviour Changes
The 'drop-responder' message has been changed. An initiator MAY now add a reason field to a 'drop-responder' message the server SHALL close the connection to the corresponding responder with. That field contains a close code described here
When to use the reason field has been described here.
The 'close' message has been added.
All WebRTC-related messages have been removed from the spec and will be moved into a separate task soon. I'll use a new branch for that.
Add sendClose method to SaltyRTC
https://github.com/saltyrtc/saltyrtc-meta/blob/master/Protocol.md#close-message
It should call a sendClose method on the signaling class.
Determining of first common task
The initiator SHALL continue by comparing the provided tasks to its own Array of available tasks and MUST choose the first common task from both Arrays.
In the following case, which one is the first common task?
initiator: ['webrtc', 'ortc']
responder: ['ortc', 'webrtc']
I assume it's webrtc, as the initiator is the one that chooses, so it gets the pick.
What about this wording?
The initiator SHALL continue by comparing the provided tasks to its own Array of available tasks. It MUST choose the first task in its own list of available tasks that is also contained in the list of provided tasks.
That would mean that in the example above, webrtc is chosen.
It would also mean that in the following case...
initiator: ['webrtc', 'ortc', 'email']
responder: ['ortc', 'websockets', 'email', 'sms', 'carrier-pigeons', 'webrtc']
...webrtc would be chosen, even though webrtc is the least preferred task of the responder, and even though ortc would look like a good match in this case.
@lgrahl what are your thoughts?
Update close codes
Wrong send-error validation
03-28 21:03:50.410 19412 8296 W System.err: org.saltyrtc.client.exceptions.ValidationError: id must be 32 bytes long, not 8
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.helpers.ValidationHelper.validateByteArray(ValidationHelper.java:47)
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.messages.s2c.SendError.<init>(SendError.java:31)
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.helpers.MessageReader.read(MessageReader.java:98)
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.helpers.MessageReader.read(MessageReader.java:45)
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.signaling.ResponderSignaling.onPeerHandshakeMessage(ResponderSignaling.java:372)
03-28 21:03:50.419 19412 8296 W System.err: at org.saltyrtc.client.signaling.Signaling$1.onBinaryMessage(Signaling.java:383)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ListenerManager.callOnBinaryMessage(ListenerManager.java:385)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ReadingThread.callOnBinaryMessage(ReadingThread.java:276)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ReadingThread.handleBinaryFrame(ReadingThread.java:996)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ReadingThread.handleFrame(ReadingThread.java:755)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ReadingThread.main(ReadingThread.java:108)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.ReadingThread.runMain(ReadingThread.java:64)
03-28 21:03:50.420 19412 8296 W System.err: at com.neovisionaries.ws.client.WebSocketThread.run(WebSocketThread.java:45)
https://github.com/saltyrtc/saltyrtc-meta/blob/master/Protocol.md#send-error-message
Handshake attempts after 'task' state trigger a protocol error
When a new responder connects, not only is the new-responder message being ignored, but also the responder that is trying to initiate a handshake triggers a protocol error because the initiator cannot find the responder in its map of responders.
Unfortunately, this implementation of the client has not been designed to fully reset its state to be able to do another handshake. The proposed solution is to drop the responder.
Furthermore, a new-initiator message also results in a protocol error after the handshake has been completed.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.