Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement Audio and Video End-to-End Encryption (DAVE) Protocol #102

Open
dank074 opened this issue Sep 18, 2024 · 13 comments
Open

Implement Audio and Video End-to-End Encryption (DAVE) Protocol #102

dank074 opened this issue Sep 18, 2024 · 13 comments
Labels
enhancement New feature or request help wanted Extra attention is needed

Comments

@dank074
Copy link
Owner

dank074 commented Sep 18, 2024

Discord announcement:

Last year, we announced that we were experimenting with new encryption protocols and technologies for audio and video calls on Discord. After extensive experimenting, designing, developing, and auditing, we’re excited to announce Discord’s audio and video end-to-end encryption (“E2EE A/V” or “E2EE” for short), which we like to refer to as our DAVE protocol.
Developer Impact
Starting September 2024, Discord is migrating voice and video in DMs, Group DMs, voice channels, and Go Live streams to use end-to-end encryption (E2EE).

Who this affects: Any libraries or apps that support Discord Voice connections.

You are not immediately required to support the E2EE protocol, as calls will automatically upgrade/downgrade to/from E2EE depending on the support of clients in the call.
Implementing E2EE Voice
We have added high-level documentation for Discord's Audio and Video End-to-End Encryption (DAVE) protocol, and the new voice gateway opcodes required to support it.

The most thorough documentation on the DAVE protocol is found in the Protocol Whitepaper. You can also use our open-source library libdave to assist with your implementation. The exact format of the DAVE protocol opcodes is detailed in the Voice Gateway Opcodes section of the protocol whitepaper.
Future Deprecation and Discontinuation of Non-E2EE Voice
Non-E2EE connections to voice in DMs, Group DMs, voice channels, and Go Live streams will eventually be deprecated and discontinued.

In 2025, all official Discord clients will support the protocol and it will be an enforced requirement to connect to the end-to-end encryption-eligible audio/video session types listed above.

Once a timeline for deprecation and discontinuation is finalized, we will share details and developers will have at least six months to implement before we sunset non-E2EE voice connections.

Read more about Discord's Audio and Video End-to-End Encryption (DAVE) protocol:
Discord Developer Docs Change Log
Meet DAVE: Discord's New End-to-End Encryption for Audio & Video
DAVE protocol whitepaper
libdave open-source library on GitHub

This can be in the backburner for now since it looks like they won't force it until sometime in 2025. Interesting that Stage Channel voice connections aren't mentioned in the encryption-eligible audio/video session types. I guess those are the only ones that won't support E2EE encryption
@dank074 dank074 added enhancement New feature or request help wanted Extra attention is needed labels Sep 18, 2024
@longnguyen2004
Copy link
Collaborator

From what I've seen, the encryption seems to be between the frame/NALU splitter and packetizer, so theoretically nothing needs to be changed in the packetizer (thank god). That introduces another layer of coupling between the WebSocket side and media handling side though, which could become ugly...

If a start code sequence is encountered the nonce is incremented and encryption is re-attempted. This process can repeat up to 10 times until a start code sequence is not encountered in the ciphertext and supplemental protocol data. It must be impossible for a start code to consistently appear in the protocol supplemental data section. In the unlikely event that the maximum number of attempts is reached the frame is dropped and a failure is returned.

This looks very scuffed...let's see how it goes.

@longnguyen2004
Copy link
Collaborator

longnguyen2004 commented Oct 25, 2024
edited
Loading

Unfortunately we don't have much option here...

  • mls-ts is only a proof of concept, not a spec-compliant library (only at draft 11). It also doesn't support the ciphersuite that Discord is using, but it can be added easily enough. Maybe with enough effort we can get it to work?
  • OpenMLS is written in Rust, but there's no official WASM build, so we can't use it in JS either

@dank074
Copy link
Owner Author

dank074 commented Oct 26, 2024

OpenMLS is working on adding WASM bindings openmls/openmls#1525

It will be interesting to see what Discord.js does, since they'll also need a TS solution for their voice package

@longnguyen2004
Copy link
Collaborator

From the changelog, we'll have a 6 month deprecation period to implement the protocol. Let's hope either OpenMLS or mls-rs will have an npm package by then

See https://discord.com/developers/docs/change-log#future-deprecation-and-discontinuation-of-none2ee-voice

@DataM0del
Copy link

DataM0del commented Oct 27, 2024
edited
Loading

@dank074 Discord.JS implemented DAVE a while ago.
Useful references:

@longnguyen2004
Copy link
Collaborator

That's not DAVE, just regular transport security that we're already doing

@DataM0del
Copy link

Oh....

@DataM0del
Copy link

That's not DAVE, just regular transport security that we're already doing

Anyways, there IS a library for DAVE, and it's provided by Discord. Not sure what's stopping you from using it :|

https://github.com/discord/libdave/tree/main/js

@DataM0del
Copy link

Well, it's not published but...

@longnguyen2004
Copy link
Collaborator

  1. It uses native code (C++), and we don't want to have to maintain a native package ourselves (Node native modules are hard)
  2. The code is designed to work together with the voice module in the Discord app, and wouldn't be compatible with this library (or at least would require extensive modifications)

The plan now (for me at least) is to wait for OpenMLS or mls-rs to have an official npm package that we can use. They're both Rust libraries that can be compiled to WASM relatively easily.

@DataM0del
Copy link

DataM0del commented Oct 28, 2024
edited
Loading

  1. It uses native code (C++), and we don't want to have to maintain a native package ourselves (Node native modules are hard)

    1. The code is designed to work together with the voice module in the Discord app, and wouldn't be compatible with this library (or at least would require extensive modifications)

The plan now (for me at least) is to wait for OpenMLS or mls-rs to have an official npm package that we can use. They're both Rust libraries that can be compiled to WASM relatively easily.

@longnguyen2004
No?
I linked to the js version of the library, not the C/C++ version of the library.
It doesn't link to any native libraries. I went through every file in the JS version, doesn't look like it's linking to anything, just base64-js & @noble/hashes.

@longnguyen2004
Copy link
Collaborator

Those are utilities functions only, it doesn't contain any actual encryption functions, all of that is done in native code (trust me, I've read through them all)

@longnguyen2004
Copy link
Collaborator

Update: We now have a mls-rs-wasm package on npm (not an official package from Amazon, but better than nothing).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@longnguyen2004 @dank074 @DataM0del