noise: redesign preshared key mode

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
author: Jason A. Donenfeld <Jason@zx2c4.com> 2017-04-27 11:10:50 +0200
committer: Jason A. Donenfeld <Jason@zx2c4.com> 2017-05-17 18:07:42 +0200
commit: 41e7aa153984364087a9ef07eca02c72961825c7 (patch)
tree: 8d8e81c26bbc77e387194835b9e9467a1d58c498 /src/cookie.h
parent: a2223db43496574b9211590f0dea09a718c6ca62 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/src/cookie.h b/src/cookie.h
index 87a0e5a..c87d3dd 100644
--- a/src/cookie.h
+++ b/src/cookie.h
@@ -14,6 +14,7 @@ struct sk_buff;
 struct cookie_checker {
 	u8 secret[NOISE_HASH_LEN];
 	u8 cookie_encryption_key[NOISE_SYMMETRIC_KEY_LEN];
+	u8 message_mac1_key[NOISE_SYMMETRIC_KEY_LEN];
 	u64 secret_birthdate;
 	struct rw_semaphore secret_lock;
 	struct ratelimiter ratelimiter;
@@ -27,6 +28,7 @@ struct cookie {
 	bool have_sent_mac1;
 	u8 last_mac1_sent[COOKIE_LEN];
 	u8 cookie_decryption_key[NOISE_SYMMETRIC_KEY_LEN];
+	u8 message_mac1_key[NOISE_SYMMETRIC_KEY_LEN];
 	struct rw_semaphore lock;
 };
 
@@ -39,7 +41,8 @@ enum cookie_mac_state {
 
 int cookie_checker_init(struct cookie_checker *checker, struct wireguard_device *wg);
 void cookie_checker_uninit(struct cookie_checker *checker);
-void cookie_checker_precompute_keys(struct cookie_checker *checker, struct wireguard_peer *peer);
+void cookie_checker_precompute_device_keys(struct cookie_checker *checker);
+void cookie_checker_precompute_peer_keys(struct wireguard_peer *peer);
 void cookie_init(struct cookie *cookie);
 
 enum cookie_mac_state cookie_validate_packet(struct cookie_checker *checker, struct sk_buff *skb, bool check_cookie);
author	Jason A. Donenfeld <Jason@zx2c4.com>	2017-04-27 11:10:50 +0200
committer	Jason A. Donenfeld <Jason@zx2c4.com>	2017-05-17 18:07:42 +0200
commit	41e7aa153984364087a9ef07eca02c72961825c7 (patch)
tree	8d8e81c26bbc77e387194835b9e9467a1d58c498 /src/cookie.h
parent	a2223db43496574b9211590f0dea09a718c6ca62 (diff)