198 lines
4.5 KiB
Go
198 lines
4.5 KiB
Go
package onions
|
|
|
|
import (
|
|
"net/netip"
|
|
"reflect"
|
|
"time"
|
|
|
|
"github.com/indra-labs/indra/pkg/crypto"
|
|
"github.com/indra-labs/indra/pkg/crypto/nonce"
|
|
"github.com/indra-labs/indra/pkg/crypto/sha256"
|
|
"github.com/indra-labs/indra/pkg/engine/coding"
|
|
"github.com/indra-labs/indra/pkg/engine/magic"
|
|
"github.com/indra-labs/indra/pkg/engine/sess"
|
|
"github.com/indra-labs/indra/pkg/engine/sessions"
|
|
"github.com/indra-labs/indra/pkg/util/qu"
|
|
"github.com/indra-labs/indra/pkg/util/slice"
|
|
"github.com/indra-labs/indra/pkg/util/splice"
|
|
)
|
|
|
|
const (
|
|
IntroMagic = "intr"
|
|
IntroLen = magic.Len +
|
|
nonce.IDLen +
|
|
crypto.PubKeyLen + 1 + 1 +
|
|
splice.AddrLen +
|
|
slice.Uint16Len +
|
|
slice.Uint32Len +
|
|
slice.Uint64Len +
|
|
crypto.SigLen
|
|
)
|
|
|
|
type Intro struct {
|
|
ID nonce.ID // Ensures never a repeated signature.
|
|
Key *crypto.Pub // Hidden service address.
|
|
AddrPort *netip.AddrPort // Introducer address.
|
|
Port uint16 // Well known port of protocol available.
|
|
RelayRate uint32 // mSat/Mb
|
|
Expiry time.Time
|
|
Sig crypto.SigBytes
|
|
}
|
|
|
|
func (x *Intro) Account(
|
|
res *sess.Data,
|
|
sm *sess.Manager,
|
|
s *sessions.Data,
|
|
last bool,
|
|
) (skip bool, sd *sessions.Data) {
|
|
|
|
res.ID = x.ID
|
|
return
|
|
}
|
|
|
|
func (x *Intro) Decode(s *splice.Splice) (e error) {
|
|
if e = magic.TooShort(s.Remaining(), IntroLen-magic.Len,
|
|
IntroMagic); fails(e) {
|
|
|
|
return
|
|
}
|
|
s.ReadID(&x.ID).
|
|
ReadPubkey(&x.Key).
|
|
ReadAddrPort(&x.AddrPort).
|
|
ReadUint32(&x.RelayRate).
|
|
ReadUint16(&x.Port).
|
|
ReadTime(&x.Expiry).
|
|
ReadSignature(&x.Sig)
|
|
return
|
|
}
|
|
|
|
func (x *Intro) Encode(s *splice.Splice) (e error) {
|
|
log.T.S("encoding", reflect.TypeOf(x),
|
|
x.ID, x.AddrPort.String(), x.Expiry, x.Sig,
|
|
)
|
|
x.Splice(s.Magic(IntroMagic))
|
|
return
|
|
}
|
|
|
|
func (x *Intro) GetOnion() interface{} { return x }
|
|
|
|
// Gossip means adding to the node's peer message list which will be gossiped by
|
|
// the libp2p network of Indra peers.
|
|
func (x *Intro) Gossip(sm *sess.Manager, c qu.C) {
|
|
log.D.F("propagating hidden service intro for %s",
|
|
x.Key.ToBased32Abbreviated())
|
|
}
|
|
|
|
func (x *Intro) Handle(s *splice.Splice, p Onion, ng Ngin) (e error) {
|
|
log.D.Ln("handling intro")
|
|
ng.GetHidden().Lock()
|
|
valid := x.Validate()
|
|
if valid {
|
|
|
|
// Add to our current peer state advertisements.
|
|
_ = valid
|
|
|
|
log.D.Ln(ng.Mgr().GetLocalNodeAddressString(), "validated intro", x.ID)
|
|
kb := x.Key.ToBytes()
|
|
if _, ok := ng.GetHidden().KnownIntros[x.Key.ToBytes()]; ok {
|
|
log.D.Ln(ng.Mgr().GetLocalNodeAddressString(), "already have intro")
|
|
ng.Pending().ProcessAndDelete(x.ID, &kb, s.GetAll())
|
|
ng.GetHidden().Unlock()
|
|
return
|
|
}
|
|
log.D.F("%s storing intro for %s %s",
|
|
ng.Mgr().GetLocalNodeAddressString(), x.Key.ToBased32Abbreviated(),
|
|
x.ID)
|
|
ng.GetHidden().KnownIntros[x.Key.ToBytes()] = x
|
|
var ok bool
|
|
if ok, e = ng.Pending().ProcessAndDelete(x.ID, &kb,
|
|
s.GetAll()); ok || !fails(e) {
|
|
|
|
ng.GetHidden().Unlock()
|
|
log.D.Ln("deleted pending response", x.ID)
|
|
return
|
|
}
|
|
}
|
|
ng.GetHidden().Unlock()
|
|
return
|
|
}
|
|
|
|
func (x *Intro) Len() int { return IntroLen }
|
|
func (x *Intro) Magic() string { return IntroMagic }
|
|
|
|
func (x *Intro) Splice(s *splice.Splice) {
|
|
x.SpliceNoSig(s)
|
|
s.Signature(x.Sig)
|
|
}
|
|
|
|
func IntroSplice(
|
|
s *splice.Splice,
|
|
id nonce.ID,
|
|
key *crypto.Pub,
|
|
ap *netip.AddrPort,
|
|
relayRate uint32,
|
|
port uint16,
|
|
expires time.Time,
|
|
) {
|
|
|
|
s.ID(id).
|
|
Pubkey(key).
|
|
AddrPort(ap).
|
|
Uint32(relayRate).
|
|
Uint16(port).
|
|
Time(expires)
|
|
}
|
|
|
|
func (x *Intro) SpliceNoSig(s *splice.Splice) {
|
|
IntroSplice(s, x.ID, x.Key, x.AddrPort, x.RelayRate, x.Port, x.Expiry)
|
|
}
|
|
|
|
func (x *Intro) Validate() bool {
|
|
s := splice.New(IntroLen - magic.Len)
|
|
x.SpliceNoSig(s)
|
|
hash := sha256.Single(s.GetUntil(s.GetCursor()))
|
|
key, e := x.Sig.Recover(hash)
|
|
if fails(e) {
|
|
return false
|
|
}
|
|
if key.Equals(x.Key) && x.Expiry.After(time.Now()) {
|
|
return true
|
|
}
|
|
return false
|
|
}
|
|
|
|
func (x *Intro) Wrap(inner Onion) {}
|
|
|
|
func NewIntro(
|
|
id nonce.ID,
|
|
key *crypto.Prv,
|
|
ap *netip.AddrPort,
|
|
relayRate uint32,
|
|
port uint16,
|
|
expires time.Time,
|
|
) (in *Intro) {
|
|
|
|
pk := crypto.DerivePub(key)
|
|
s := splice.New(IntroLen - magic.Len)
|
|
IntroSplice(s, id, pk, ap, relayRate, port, expires)
|
|
hash := sha256.Single(s.GetUntil(s.GetCursor()))
|
|
var e error
|
|
var sign crypto.SigBytes
|
|
if sign, e = crypto.Sign(key, hash); fails(e) {
|
|
return nil
|
|
}
|
|
in = &Intro{
|
|
ID: id,
|
|
Key: pk,
|
|
AddrPort: ap,
|
|
RelayRate: relayRate,
|
|
Port: port,
|
|
Expiry: expires,
|
|
Sig: sign,
|
|
}
|
|
return
|
|
}
|
|
|
|
func init() { Register(IntroMagic, introGen) }
|
|
func introGen() coding.Codec { return &Intro{} }
|