Skip to content

Files

Latest commit

FernthedevFernthedev
Optimize encrypted bytes size
Mar 2, 2023
f630248 · Mar 2, 2023

History

History
149 lines (104 loc) · 5.46 KB

specs.md

File metadata and controls

149 lines (104 loc) · 5.46 KB

Specifications

The networking specifications will be found here. You may also follow the official supported languages (as of 3/12/2020) which are the following

  • Java (Main)
  • Dart/Flutter (Secondary)

Schema

  • The JSON data is expected to be encoded as UTF-8

Packets are sent using JSON and a JSON wrapper. The packet schema is as follows:

Packet Format

The packet is sent in binary with the following format:

PacketWrapper
packetLen encrypt packetId packetType identifierLen identifier payloadLen payload
8 1 4 1 4 identifierLen 4 payloadLen

When encrypt is non-zero, the packet is encrypted and the payload looks as follows:

EncryptedBytes
dataLen data paramsLen params ivLen iv
4 dataLen 4 ivLen

packetLen -> {encrypt|packetId|packetType|identifierLen|identifier|payloadLen|payload}

Packet Type:

Packet Type can be the following:

Type Bit
Unknown -1
JSON 0
Protobuf 1

Initializing the connection

Make sure that the important notice has been achknowledged

When the connection has been established, the server will generate a 4096 RSA key pair, preferrably a unique one for each client. Then, the server will send an INITIAL_HANDSHAKE_PACKET

Once the client receives this data, the client should check if the version is the same as the client or if the minimum version is supported by the client. If not, the usual procedure is to warn the user of the version mismatch and to expect issues. If the versions do match, the client should generate an AES 256-bit key and then send a KEY_RESPONSE_PACKET with the key encrypted by the public RSA key in a byte array form.

Once the server receives the AES 256-bit key encrypted by the RSA public key, the server should decrypt the key and store it on the client's data class. Now the RSA key pairs are no longer needed and can be discarded from memory. The server will then send an empty packet named "REQUEST_CONNECT_INFO_PACKET" to request the client's data. The client will send a CONNECTED_PACKET

Once the server receives the packet, the server can ask for password (use the SELF_MESSAGE_PACKET with FILL_PASSWORD) or kick for an abusive name etc. This is the last stage of the handshake process

Special primitive packets

IMPORTANT NOTICE

These packets are special or primitive packets used for specific needs. They can be sent by the networking API or the application using it.

Ping packet (3 packets)

The ping packets [[PING_PACKET, SERVER], [PONG_PACKET, CLIENT], [PING_RECEIVE, SERVER]] (in their respectful order) are empty packets that are used to call events to measure ping. The server may send a PING_PACKET or the client may send a PONG_PACKET to start the ping-pong handshake.

All that is required is to use the names provided above and the correct order.

Order:

  1. Server sends PING_PACKET
  2. Client responds with PONG_PACKET
  3. Server responds to PING_RECEIVE

Initial Handshake Packet

This packet is used by the server to initiate the encryption handshake.

JSON:

{
  "publicKey": "RSA_PUBLIC_KEY_HERE",
  "versionData": {
    "version": "protocol_version", // The version used by the sender (SEMANTIC VERSIONING)
    "minVersion": "minimum_supported_protocol_version" // The minimum version supported by the sender (SEMANTIC VERSIONING)
  }
}

Key Response Packet

This packet is used to send the AES 256 bit key encrypted by the server's RSA 4096 public key

JSON:

{
  "secretKeyEncrypted": ["BYTES_HERE", 21, 21, 32]
}

Connected Packet

This packet is used by the client to send the required information to the server.

JSON:

{
  "name": "Client-Name", // The client's name
  "os": "Windows/Linux etc.", // The sender's OS,
  "versionData": {
    "version": "protocol_version", // The version used by the sender (SEMANTIC VERSIONING)
    "minVersion": "minimum_supported_protocol_version" // The minimum version supported by the sender (SEMANTIC VERSIONING)
  }
}

Self Message Packet

The self message packet is a packet used to call events. The events as of the date of writing are as follows:

  • FILL_PASSWORD // Request the client to send a hashed password using HASHED_PASSWORD_PACKET
  • INCORRECT_PASSWORD_ATTEMPT // The password attempted is wrong
  • INCORRECT_PASSWORD_FAILURE // The passwords attempted were wrong, so cancelling authentication
  • LOST_SERVER_CONNECTION
  • REGISTER_PACKET //Called when the client has sucessfully been registered on the server
  • TIMED_OUT_REGISTRATION

JSON:

{
  "type": "REGISTER_PACKET"
}

Hashed Password Packet

Used for authentication by the server The password is expected to be hashed and the packet wrapper is highly recommended to be encrypted

JSON:

{
  "hashedPassword": {
    "password": "SHA-256-hashedPassword"
  }
}