stochastic-routing-extended 1.0.2

SRX (Stochastic Routing eXtended) — a next-generation VPN protocol with stochastic routing, DPI evasion, post-quantum cryptography, and multi-transport channel splitting
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196

//! Frame encoding and decoding.
//!
//! Wire layout (big-endian):
//! `frame_id (8) │ routing_mask (4) │ payload_len (2) │ payload (N) │ mac (16)`.

use bytes::Bytes;

use crate::error::{FrameError, Result, SrxError};

/// Fixed header: stochastic ID + routing mask + length prefix.
pub const WIRE_HEADER_LEN: usize = 8 + 4 + 2;

/// AEAD tag length on the wire (stored separately from ciphertext bytes).
pub const WIRE_MAC_LEN: usize = 16;

/// Maximum `payload` field length (`u16` length prefix).
pub const MAX_WIRE_PAYLOAD: usize = u16::MAX as usize;

/// A single SRX protocol frame.
#[derive(Debug, Clone)]
pub struct Frame {
    /// Stochastic (non-incremental) frame identifier.
    pub frame_id: u64,
    /// Routing mask derived from the session seed.
    pub routing_mask: u32,
    /// Encrypted payload with randomized padding (ciphertext only; tag in [`Frame::mac`]).
    pub payload: Bytes,
    /// AEAD authentication tag.
    pub mac: [u8; WIRE_MAC_LEN],
    /// Fragment info (logical; carried inside encrypted payload, not in the outer header).
    pub fragment: Option<FragmentInfo>,
}

/// Fragmentation metadata embedded in the encrypted portion.
#[derive(Debug, Clone, Copy)]
pub struct FragmentInfo {
    /// Logical sequence number (visible only inside encrypted payload).
    pub sequence: u64,
    /// Fragment index within the logical packet.
    pub index: u16,
    /// Total number of fragments.
    pub total: u16,
}

/// Encodes and decodes [`Frame`] values to/from wire format.
pub struct FrameCodec {
    _private: (),
}

impl FrameCodec {
    pub fn new() -> Self {
        Self { _private: () }
    }

    /// Encode a frame into wire bytes.
    pub fn encode(&self, frame: &Frame) -> Result<Vec<u8>> {
        let plen = frame.payload.len();
        if plen > MAX_WIRE_PAYLOAD {
            return Err(SrxError::Frame(FrameError::FrameTooLarge {
                size: plen,
                max: MAX_WIRE_PAYLOAD,
            }));
        }

        let mut out = Vec::with_capacity(WIRE_HEADER_LEN + plen + WIRE_MAC_LEN);
        out.extend_from_slice(&frame.frame_id.to_be_bytes());
        out.extend_from_slice(&frame.routing_mask.to_be_bytes());
        out.extend_from_slice(&(plen as u16).to_be_bytes());
        out.extend_from_slice(&frame.payload);
        out.extend_from_slice(&frame.mac);
        Ok(out)
    }

    /// Decode wire bytes into a frame (outer header only; [`Frame::fragment`] is [`None`]).
    pub fn decode(&self, data: &[u8]) -> Result<Frame> {
        if data.len() < WIRE_HEADER_LEN + WIRE_MAC_LEN {
            return Err(SrxError::Frame(FrameError::Corrupted(
                "truncated frame".into(),
            )));
        }

        let frame_id = read_u64(data, 0)?;
        let routing_mask = read_u32(data, 8)?;
        let payload_len = u16::from_be_bytes([data[12], data[13]]) as usize;

        let expected = WIRE_HEADER_LEN
            .checked_add(payload_len)
            .and_then(|n| n.checked_add(WIRE_MAC_LEN))
            .ok_or_else(|| {
                SrxError::Frame(FrameError::Corrupted("frame length overflow".into()))
            })?;

        if data.len() != expected {
            return Err(SrxError::Frame(FrameError::Corrupted(format!(
                "length mismatch: got {} bytes, expected {}",
                data.len(),
                expected
            ))));
        }

        let payload_start = WIRE_HEADER_LEN;
        let payload_end = payload_start + payload_len;
        let mac_start = payload_end;

        let payload = Bytes::copy_from_slice(&data[payload_start..payload_end]);
        let mac: [u8; WIRE_MAC_LEN] = data[mac_start..mac_start + WIRE_MAC_LEN]
            .try_into()
            .map_err(|_| SrxError::Frame(FrameError::Corrupted("mac field".into())))?;

        Ok(Frame {
            frame_id,
            routing_mask,
            payload,
            mac,
            fragment: None,
        })
    }
}

impl Default for FrameCodec {
    fn default() -> Self {
        Self::new()
    }
}

fn read_u64(data: &[u8], offset: usize) -> Result<u64> {
    let slice = data
        .get(offset..offset + 8)
        .ok_or_else(|| SrxError::Frame(FrameError::Corrupted("frame_id".into())))?;
    let arr: [u8; 8] = slice
        .try_into()
        .map_err(|_| SrxError::Frame(FrameError::Corrupted("frame_id".into())))?;
    Ok(u64::from_be_bytes(arr))
}

fn read_u32(data: &[u8], offset: usize) -> Result<u32> {
    let slice = data
        .get(offset..offset + 4)
        .ok_or_else(|| SrxError::Frame(FrameError::Corrupted("routing_mask".into())))?;
    let arr: [u8; 4] = slice
        .try_into()
        .map_err(|_| SrxError::Frame(FrameError::Corrupted("routing_mask".into())))?;
    Ok(u32::from_be_bytes(arr))
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn roundtrip_empty_payload() {
        let codec = FrameCodec::new();
        let frame = Frame {
            frame_id: 0xdead_beef_cafe_babe,
            routing_mask: 0x1122_3344,
            payload: Bytes::new(),
            mac: [0x5Au8; WIRE_MAC_LEN],
            fragment: None,
        };
        let wire = codec.encode(&frame).unwrap();
        let out = codec.decode(&wire).unwrap();
        assert_eq!(out.frame_id, frame.frame_id);
        assert_eq!(out.routing_mask, frame.routing_mask);
        assert!(out.payload.is_empty());
        assert_eq!(out.mac, frame.mac);
    }

    #[test]
    fn roundtrip_with_payload() {
        let codec = FrameCodec::new();
        let frame = Frame {
            frame_id: 1,
            routing_mask: 2,
            payload: Bytes::from_static(b"cipher-bytes"),
            mac: [7u8; WIRE_MAC_LEN],
            fragment: None,
        };
        let wire = codec.encode(&frame).unwrap();
        let out = codec.decode(&wire).unwrap();
        assert_eq!(out.payload.as_ref(), b"cipher-bytes");
    }

    #[test]
    fn rejects_oversized_payload() {
        let codec = FrameCodec::new();
        let big = vec![0u8; MAX_WIRE_PAYLOAD + 1];
        let frame = Frame {
            frame_id: 0,
            routing_mask: 0,
            payload: Bytes::from(big),
            mac: [0u8; WIRE_MAC_LEN],
            fragment: None,
        };
        assert!(codec.encode(&frame).is_err());
    }
}