further fixed forward secrecy

2019-03-13 23:51:29 -05:00 · 2019-03-13 23:51:29 -05:00 · 4757bb0963
commit 4757bb0963
parent 6568086e24
3 changed files with 13 additions and 5 deletions
--- a/onionr/onionrusers/onionrusers.py
+++ b/onionr/onionrusers/onionrusers.py
@ -32,7 +32,20 @@ def deleteExpiredKeys(coreInst):
    conn.close()
    return

+def deleteTheirExpiredKeys(coreInst, pubkey):
+    conn = sqlite3.connect(self._core.peerDB, timeout=10)
+    c = conn.cursor()
+
+    # Prepare the insert
+    command = (pubkey, coreInst._utils.getEpoch())
+
+    c.execute("DELETE from forwardKeys where peerKey = ? and expire <= ?", command)
+
+    conn.commit()
+    conn.close()
+
 DEFAULT_KEY_EXPIRE = 604800
+#DEFAULT_KEY_EXPIRE = 600

 class OnionrUser:
    def __init__(self, coreInst, publicKey, saveUser=False):
@ -149,7 +162,6 @@ class OnionrUser:
        newPub = self._core._utils.bytesToStr(newKeys[0])
        newPriv = self._core._utils.bytesToStr(newKeys[1])

-        time = self._core._utils.getEpoch()
        command = (self.publicKey, newPub, newPriv, time, expire + time)

        c.execute("INSERT INTO myForwardKeys VALUES(?, ?, ?, ?, ?);", command)