Skip to content

[core] Moved KM refresh in packUniqueData() #2541

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
maxsharabayko merged 2 commits into from
Nov 21, 2022
Merged

[core] Moved KM refresh in packUniqueData() #2541

maxsharabayko merged 2 commits into from
Nov 21, 2022

Conversation

@maxsharabayko
Copy link
Collaborator

@maxsharabayko maxsharabayko commented Nov 17, 2022
edited
Loading

Problem Statement

The issue is described in #2502: it is possible to get a corrupted packet on the receiving side when encryption is enabled.
The reason is that a data packet may be encrypted with a key different from the one indicated in the KK flied of the data packet header.

The active key (odd/even) switch happens in the RcvQ thread:

CUDT::processCtrlAck(..)
⋅ ⋅ CUDT::checkSndTimers(..)
⋅ ⋅ ⋅ ⋅ CCryptoControl::sendKeysToPeer(..) // Key refresh

The SndQ Thread first sets the KK frags of a data packet, then encrypts the packet, potentially with a different key if KM refresh has happened.

CUDT::packUniqueData(..)
⋅ ⋅ CCryptoControl::encrypt(..)

Steps to Reporoduce

#2502 (comment)

Proposed Solution

Statement 1. KM refresh is performed by the payload sender for the TX context. Thus it should be done in the sending queue, in particular, right after (or just before) encoding the next unique data packet.

Statement 2. KM_REQ retransmission has to be performed from the RcvQ thread, when checking retransmission timers. The same for HS_REQ retransmission. There is no need to do this operation in the processing of an incoming ACK packet.

Proposed Solution. Perform key refresh in the same thread where encryption happens, in particular, right after the encryption of a unique data packet.

Fixes #2502.

@maxsharabayko maxsharabayko added Type: Bug Indicates an unexpected problem or unintended behavior [core] Area: Changes in SRT library core labels Nov 17, 2022
@maxsharabayko maxsharabayko added this to the v1.6.0 milestone Nov 17, 2022
@codecov-commenter

This comment was marked as off-topic.

Sign in to view
@maxsharabayko maxsharabayko marked this pull request as ready for review November 21, 2022 12:51
@maxsharabayko maxsharabayko merged commit be1ccf5 into Haivision:master Nov 21, 2022
@maxsharabayko maxsharabayko deleted the hotfix/km-refresh branch November 21, 2022 15:37
This was referenced Nov 25, 2022
Closed
Closed
@maxsharabayko maxsharabayko mentioned this pull request Aug 21, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ethouris ethouris Awaiting requested review from ethouris

@jeandube jeandube Awaiting requested review from jeandube

Assignees

No one assigned

Labels

[core] Area: Changes in SRT library core Type: Bug Indicates an unexpected problem or unintended behavior

Projects

None yet

Milestone

v1.5.2

Development

Successfully merging this pull request may close these issues.

[BUG] Corrupted data packet at SRT receiver output when using encryption / decryption

2 participants

@maxsharabayko @codecov-commenter