wireguard-tools/contrib/external-tests/haskell/src/Main.hs

{-# LANGUAGE OverloadedStrings #-}
module Main where

import Control.Applicative ((<$>))
import Control.Concurrent.MVar
import Control.Monad       (void)
import Data.ByteString.Char8 (pack, unpack, take, drop, replicate)
import Data.ByteString (ByteString)
import qualified Data.ByteString.Base16 as Hex
import qualified Data.ByteString.Base64 as B64
import qualified Data.Serialize         as S
import Prelude hiding (take, drop, replicate)
import System.Environment
import Network.Socket
import qualified Network.Socket.ByteString as NBS

import Crypto.Hash.BLAKE2.BLAKE2s
import Crypto.Noise.Cipher
import Crypto.Noise.Cipher.ChaChaPoly1305
import Crypto.Noise.Curve
import Crypto.Noise.Curve.Curve25519
import Crypto.Noise.Handshake
import Crypto.Noise.HandshakePatterns
import Crypto.Noise.Hash.BLAKE2s
import Crypto.Noise.Types

import Data.Time.TAI64

w :: PublicKey Curve25519
  -> Plaintext
  -> Socket
  -> SockAddr
  -> ByteString
  -> IO ()
w theirPub (Plaintext myPSK) sock addr msg = do
  let x      = "\x01\x00\x00\x00\x00\x00" `mappend` msg
      mac    = hash 16 myPSK (sbToBS' (curvePubToBytes theirPub) `mappend` sbToBS' x) -- TODO: this should actually be blake2s(key=blake2s("mac1----" || theirPub), payload=blah)
  void $ NBS.sendTo sock (x `mappend` mac `mappend` replicate 16 '\0') addr

r :: MVar ByteString -> Socket -> IO ByteString
r smv sock = do
  (r, _) <- NBS.recvFrom sock 1024
  putMVar smv $ (take 2 . drop 1) r
  return . take 48 . drop 8 $ r

payload :: IO Plaintext
payload = do
  tai64n <- getCurrentTAI64N
  return . Plaintext . bsToSB' $ S.encode tai64n

main :: IO ()
main = do
  let ip = "demo.wireguard.io"
  let port = "12913"
  let mykey = "WAmgVYXkbT2bCtdcDwolI88/iVi/aV3/PHcUBTQSYmo="
  let serverkey = "qRCwZSKInrMAq5sepfCdaCsRJaoLe5jhtzfiw7CjbwM="
  let psk = "FpCyhws9cxwWoV4xELtfJvjJN+zQVRPISllRWgeopVE="
  addrInfo <- head <$> getAddrInfo Nothing (Just ip) (Just port)
  sock     <- socket (addrFamily addrInfo) Datagram defaultProtocol

  let addr       = addrAddress addrInfo
      mykey'     = curveBytesToPair  . bsToSB' . either undefined id . B64.decode . pack $ mykey     :: KeyPair Curve25519
      serverkey' = curveBytesToPub   . bsToSB' . either undefined id . B64.decode . pack $ serverkey :: PublicKey Curve25519
      psk'       = Plaintext . bsToSB' . either undefined id . B64.decode . pack $ psk
      hs         = handshakeState $ HandshakeStateParams
                   noiseIK -- TODO: specify psk2 mode
                   "WireGuard v1 zx2c4 Jason@zx2c4.com"
                   (Just psk')
                   (Just mykey')
                   Nothing
                   (Just serverkey')
                   Nothing
                   True :: HandshakeState ChaChaPoly1305 Curve25519 BLAKE2s

  senderindexmv <- newEmptyMVar
  let hc = HandshakeCallbacks (w serverkey' psk' sock addr) (r senderindexmv sock) (\_ -> return ()) payload
  (encryption, decryption) <- runHandshake hs hc

  let (keepAlive, encryption') = encryptPayload "" encryption
  senderindex <- takeMVar senderindexmv
  void $ NBS.sendTo sock ("\x04\x00\x00\x00" `mappend` senderindex `mappend` replicate 8 '\0' `mappend` keepAlive) addr
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`{-# LANGUAGE OverloadedStrings #-}`
			`module Main where`

			`import Control.Applicative ((<$>))`
			`import Control.Concurrent.MVar`
			`import Control.Monad (void)`
			`import Data.ByteString.Char8 (pack, unpack, take, drop, replicate)`
			`import Data.ByteString (ByteString)`
			`import qualified Data.ByteString.Base16 as Hex`
			`import qualified Data.ByteString.Base64 as B64`
			`import qualified Data.Serialize as S`
			`import Prelude hiding (take, drop, replicate)`
			`import System.Environment`
			`import Network.Socket`
			`import qualified Network.Socket.ByteString as NBS`

			`import Crypto.Hash.BLAKE2.BLAKE2s`
			`import Crypto.Noise.Cipher`
			`import Crypto.Noise.Cipher.ChaChaPoly1305`
			`import Crypto.Noise.Curve`
			`import Crypto.Noise.Curve.Curve25519`
			`import Crypto.Noise.Handshake`
			`import Crypto.Noise.HandshakePatterns`
			`import Crypto.Noise.Hash.BLAKE2s`
			`import Crypto.Noise.Types`

			`import Data.Time.TAI64`

			`w :: PublicKey Curve25519`
			`-> Plaintext`
			`-> Socket`
			`-> SockAddr`
			`-> ByteString`
			`-> IO ()`
			`w theirPub (Plaintext myPSK) sock addr msg = do`
external-tests: update to latest Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2016-12-25 21:01:06 +01:00			let x = "\x01\x00\x00\x00\x00\x00" `mappend` msg
noise: redesign preshared key mode Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2017-04-27 11:10:50 +02:00			mac = hash 16 myPSK (sbToBS' (curvePubToBytes theirPub) `mappend` sbToBS' x) -- TODO: this should actually be blake2s(key=blake2s("mac1----" \|\| theirPub), payload=blah)
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			void $ NBS.sendTo sock (x `mappend` mac `mappend` replicate 16 '\0') addr

			`r :: MVar ByteString -> Socket -> IO ByteString`
			`r smv sock = do`
			`(r, _) <- NBS.recvFrom sock 1024`
			`putMVar smv $ (take 2 . drop 1) r`
external-tests: update to latest Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2016-12-25 21:01:06 +01:00			`return . take 48 . drop 8 $ r`
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00
			`payload :: IO Plaintext`
			`payload = do`
			`tai64n <- getCurrentTAI64N`
			`return . Plaintext . bsToSB' $ S.encode tai64n`

			`main :: IO ()`
			`main = do`
external-tests: switch to demo server Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2016-07-07 03:52:21 +02:00			`let ip = "demo.wireguard.io"`
			`let port = "12913"`
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`let mykey = "WAmgVYXkbT2bCtdcDwolI88/iVi/aV3/PHcUBTQSYmo="`
			`let serverkey = "qRCwZSKInrMAq5sepfCdaCsRJaoLe5jhtzfiw7CjbwM="`
			`let psk = "FpCyhws9cxwWoV4xELtfJvjJN+zQVRPISllRWgeopVE="`
			`addrInfo <- head <$> getAddrInfo Nothing (Just ip) (Just port)`
			`sock <- socket (addrFamily addrInfo) Datagram defaultProtocol`

			`let addr = addrAddress addrInfo`
			`mykey' = curveBytesToPair . bsToSB' . either undefined id . B64.decode . pack $ mykey :: KeyPair Curve25519`
			`serverkey' = curveBytesToPub . bsToSB' . either undefined id . B64.decode . pack $ serverkey :: PublicKey Curve25519`
			`psk' = Plaintext . bsToSB' . either undefined id . B64.decode . pack $ psk`
			`hs = handshakeState $ HandshakeStateParams`
noise: redesign preshared key mode Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2017-04-27 11:10:50 +02:00			`noiseIK -- TODO: specify psk2 mode`
			`"WireGuard v1 zx2c4 Jason@zx2c4.com"`
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`(Just psk')`
			`(Just mykey')`
			`Nothing`
			`(Just serverkey')`
			`Nothing`
			`True :: HandshakeState ChaChaPoly1305 Curve25519 BLAKE2s`

			`senderindexmv <- newEmptyMVar`
			`let hc = HandshakeCallbacks (w serverkey' psk' sock addr) (r senderindexmv sock) (\_ -> return ()) payload`
			`(encryption, decryption) <- runHandshake hs hc`

			`let (keepAlive, encryption') = encryptPayload "" encryption`
			`senderindex <- takeMVar senderindexmv`
external-tests: update to latest Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2016-12-25 21:01:06 +01:00			void $ NBS.sendTo sock ("\x04\x00\x00\x00" `mappend` senderindex `mappend` replicate 8 '\0' `mappend` keepAlive) addr