From 67288f27b6f057f9183a2bad406488965b456d53 Mon Sep 17 00:00:00 2001
From: zzz <zzz@i2pmail.org>
Date: Wed, 16 Jun 2021 09:50:04 -0400
Subject: [PATCH] Crypto: Increase key pools for slow machines

Increase EDH key pool for all
Return unused EDH keys to XDH pool
ref: http://zzz.i2p/topics/3139
---
 .../router/crypto/ratchet/Elg2KeyFactory.java | 21 ++++++++++++-------
 .../transport/crypto/DHSessionKeyBuilder.java |  6 ++++--
 .../transport/crypto/X25519KeyFactory.java    |  8 +++----
 .../transport/udp/OutboundEstablishState.java |  4 ++--
 4 files changed, 24 insertions(+), 15 deletions(-)

diff --git a/router/java/src/net/i2p/router/crypto/ratchet/Elg2KeyFactory.java b/router/java/src/net/i2p/router/crypto/ratchet/Elg2KeyFactory.java
index b2f336f85..acde5c6df 100644
--- a/router/java/src/net/i2p/router/crypto/ratchet/Elg2KeyFactory.java
+++ b/router/java/src/net/i2p/router/crypto/ratchet/Elg2KeyFactory.java
@@ -2,12 +2,12 @@ package net.i2p.router.crypto.ratchet;
 
 import java.util.concurrent.LinkedBlockingQueue;
 
-import net.i2p.I2PAppContext;
 import net.i2p.crypto.EncType;
 import net.i2p.crypto.KeyFactory;
 import net.i2p.crypto.KeyPair;
 import net.i2p.data.PrivateKey;
 import net.i2p.data.PublicKey;
+import net.i2p.router.RouterContext;
 import net.i2p.util.I2PThread;
 import net.i2p.util.Log;
 import net.i2p.util.SystemVersion;
@@ -24,7 +24,7 @@ import net.i2p.util.SystemVersion;
  */
 public class Elg2KeyFactory extends I2PThread implements KeyFactory {
 
-    private final I2PAppContext _context;
+    private final RouterContext _context;
     private final Log _log;
     private final int _minSize;
     private final int _maxSize;
@@ -36,11 +36,12 @@ public class Elg2KeyFactory extends I2PThread implements KeyFactory {
     private final static String PROP_DH_PRECALC_MIN = "crypto.edh.precalc.min";
     private final static String PROP_DH_PRECALC_MAX = "crypto.edh.precalc.max";
     private final static String PROP_DH_PRECALC_DELAY = "crypto.edh.precalc.delay";
-    private final static int DEFAULT_DH_PRECALC_MIN = 10;
-    private final static int DEFAULT_DH_PRECALC_MAX = 30;
+    private final static int DEFAULT_DH_PRECALC_MIN = 20;
+    private final static int DEFAULT_DH_PRECALC_MAX = 60;
     private final static int DEFAULT_DH_PRECALC_DELAY = 25;
+    private final boolean RETURN_UNUSED_TO_XDH;
 
-    public Elg2KeyFactory(I2PAppContext ctx) {
+    public Elg2KeyFactory(RouterContext ctx) {
         super("EDH Precalc");
         _context = ctx;
         _log = ctx.logManager().getLog(Elg2KeyFactory.class);
@@ -52,6 +53,10 @@ public class Elg2KeyFactory extends I2PThread implements KeyFactory {
         // add to the defaults for every 128MB of RAM, up to 512MB
         long maxMemory = SystemVersion.getMaxMemory();
         int factor = (int) Math.max(1l, Math.min(4l, 1 + (maxMemory / (128*1024*1024l))));
+        boolean slow = SystemVersion.isSlow();
+        RETURN_UNUSED_TO_XDH = slow;
+        if (slow)
+            factor *= 2;
         int defaultMin = DEFAULT_DH_PRECALC_MIN * factor;
         int defaultMax = DEFAULT_DH_PRECALC_MAX * factor;
         _minSize = ctx.getProperty(PROP_DH_PRECALC_MIN, defaultMin);
@@ -147,6 +152,8 @@ public class Elg2KeyFactory extends I2PThread implements KeyFactory {
             rv = _context.keyGenerator().generatePKIKeys(EncType.ECIES_X25519);
             enc = Elligator2.encode(rv.getPublic(), _context.random().nextBoolean());
             i++;
+            if (enc == null && RETURN_UNUSED_TO_XDH)
+                _context.commSystem().getXDHFactory().returnUnused(rv);
         } while (enc == null);
         long diff = System.currentTimeMillis() - start;
         _context.statManager().addRateData("crypto.EDHGenerateTime", diff);
@@ -161,8 +168,8 @@ public class Elg2KeyFactory extends I2PThread implements KeyFactory {
      */
     public void returnUnused(Elg2KeyPair kp) {
 /*
-        _context.statManager().addRateData("crypto.EDHReused", 1);
-        _keys.offer(kp);
+        if (_keys.offer(kp))
+            _context.statManager().addRateData("crypto.EDHReused", 1);
 */
     }
 
diff --git a/router/java/src/net/i2p/router/transport/crypto/DHSessionKeyBuilder.java b/router/java/src/net/i2p/router/transport/crypto/DHSessionKeyBuilder.java
index fd99abf00..11a6deb3f 100644
--- a/router/java/src/net/i2p/router/transport/crypto/DHSessionKeyBuilder.java
+++ b/router/java/src/net/i2p/router/transport/crypto/DHSessionKeyBuilder.java
@@ -460,6 +460,8 @@ public class DHSessionKeyBuilder {
             // add to the defaults for every 128MB of RAM, up to 512MB
             long maxMemory = SystemVersion.getMaxMemory();
             int factor = (int) Math.max(1l, Math.min(4l, 1 + (maxMemory / (128*1024*1024l))));
+            if (SystemVersion.isSlow())
+                factor *= 2;
             int defaultMin = DEFAULT_DH_PRECALC_MIN * factor;
             int defaultMax = DEFAULT_DH_PRECALC_MAX * factor;
             _minSize = ctx.getProperty(PROP_DH_PRECALC_MIN, defaultMin);
@@ -587,8 +589,8 @@ public class DHSessionKeyBuilder {
                 _log.error("builder returned used", new Exception());
                 return;
             }
-            _context.statManager().addRateData("crypto.DHReused", 1);
-            _builders.offer(builder);
+            if (_builders.offer(builder))
+                _context.statManager().addRateData("crypto.DHReused", 1);
 */
         }
 
diff --git a/router/java/src/net/i2p/router/transport/crypto/X25519KeyFactory.java b/router/java/src/net/i2p/router/transport/crypto/X25519KeyFactory.java
index d8fa9008b..4b3e1b3d9 100644
--- a/router/java/src/net/i2p/router/transport/crypto/X25519KeyFactory.java
+++ b/router/java/src/net/i2p/router/transport/crypto/X25519KeyFactory.java
@@ -50,6 +50,8 @@ public class X25519KeyFactory extends I2PThread implements KeyFactory {
         // add to the defaults for every 128MB of RAM, up to 512MB
         long maxMemory = SystemVersion.getMaxMemory();
         int factor = (int) Math.max(1l, Math.min(4l, 1 + (maxMemory / (128*1024*1024l))));
+        if (SystemVersion.isSlow())
+            factor *= 2;
         int defaultMin = DEFAULT_DH_PRECALC_MIN * factor;
         int defaultMax = DEFAULT_DH_PRECALC_MAX * factor;
         _minSize = ctx.getProperty(PROP_DH_PRECALC_MIN, defaultMin);
@@ -152,10 +154,8 @@ public class X25519KeyFactory extends I2PThread implements KeyFactory {
      * to be put back onto the queue for reuse.
      */
     public void returnUnused(KeyPair kp) {
-/*
-        _context.statManager().addRateData("crypto.XDHReused", 1);
-        _keys.offer(kp);
-*/
+        if (_keys.offer(kp))
+            _context.statManager().addRateData("crypto.XDHReused", 1);
     }
 
     /** @return true if successful, false if full */
diff --git a/router/java/src/net/i2p/router/transport/udp/OutboundEstablishState.java b/router/java/src/net/i2p/router/transport/udp/OutboundEstablishState.java
index bf9c284bd..632013fb4 100644
--- a/router/java/src/net/i2p/router/transport/udp/OutboundEstablishState.java
+++ b/router/java/src/net/i2p/router/transport/udp/OutboundEstablishState.java
@@ -371,8 +371,8 @@ class OutboundEstablishState {
         _receivedIV = null;
         _receivedSignature = null;
         if (_keyBuilder != null) {
-            if (_keyBuilder.getPeerPublicValue() == null)
-                _keyFactory.returnUnused(_keyBuilder);
+            //if (_keyBuilder.getPeerPublicValue() == null)
+            //    _keyFactory.returnUnused(_keyBuilder);
             _keyBuilder = null;
         }
         // sure, there's a chance the packet was corrupted, but in practice