#include "identity.hpp" #include namespace llarp::service { std::string Identity::bt_encode() const { oxenc::bt_dict_producer btdp; btdp.append("s", signkey.ToView()); btdp.append("v", version); return std::move(btdp).str(); } void Identity::bt_decode(std::string buf) { try { oxenc::bt_dict_consumer btdc{buf}; signkey.from_string(btdc.require("s")); version = btdc.require("v"); } catch (...) { log::warning(logcat, "Identity failed to parse bt-encoded contents!"); throw; } } bool Identity::decode_key(const llarp_buffer_t& key, llarp_buffer_t* buf) { bool read = false; if (!BEncodeMaybeReadDictEntry("s", signkey, read, key, buf)) return false; if (!BEncodeMaybeReadDictInt("v", version, read, key, buf)) return false; if (not read) return bencode_discard(buf); return true; } void Identity::Clear() { signkey.Zero(); enckey.Zero(); pq.Zero(); derivedSignKey.Zero(); vanity.Zero(); } void Identity::RegenerateKeys() { crypto::identity_keygen(signkey); crypto::encryption_keygen(enckey); pub.Update(seckey_to_pubkey(signkey), seckey_to_pubkey(enckey)); crypto::pqe_keygen(pq); if (not crypto::derive_subkey_private(derivedSignKey, signkey, 1)) { throw std::runtime_error("failed to derive subkey"); } } bool Identity::KeyExchange( path_dh_func dh, SharedSecret& result, const ServiceInfo& other, const KeyExchangeNonce& N) const { return dh(result, other.EncryptionPublicKey(), enckey, N); } bool Identity::Sign(Signature& sig, uint8_t* buf, size_t size) const { return crypto::sign(sig, signkey, buf, size); } void Identity::EnsureKeys(fs::path fname, bool needBackup) { // make sure we are empty Clear(); std::string buf; // this can throw bool exists = fs::exists(fname); if (exists and needBackup) { KeyManager::copy_backup_keyfile(fname); exists = false; } // check for file if (!exists) { // regen and encode RegenerateKeys(); buf = bt_encode(); // write try { util::buffer_to_file(fname, buf.data(), buf.size()); } catch (const std::exception& e) { throw std::runtime_error{fmt::format("failed to write {}: {}", fname, e.what())}; } return; } if (not fs::is_regular_file(fname)) { throw std::invalid_argument{fmt::format("{} is not a regular file", fname)}; } // read file try { util::file_to_buffer(fname, buf.data(), buf.size()); } catch (const std::length_error&) { throw std::length_error{"service identity too big"}; } // (don't catch io error exceptions) bt_decode(buf); // ensure that the encryption key is set if (enckey.IsZero()) crypto::encryption_keygen(enckey); // also ensure the ntru key is set if (pq.IsZero()) crypto::pqe_keygen(pq); std::optional van; if (!vanity.IsZero()) van = vanity; // update pubkeys pub.Update(seckey_to_pubkey(signkey), seckey_to_pubkey(enckey), van); if (not crypto::derive_subkey_private(derivedSignKey, signkey, 1)) { throw std::runtime_error("failed to derive subkey"); } } std::optional Identity::encrypt_and_sign_introset(const IntroSet& other_i, llarp_time_t now) const { EncryptedIntroSet encrypted; if (other_i.intros.empty()) return std::nullopt; IntroSet i{other_i}; encrypted.nonce.Randomize(); // set timestamp // TODO: round to nearest 1000 ms i.time_signed = now; encrypted.signedAt = now; // set service info i.address_keys = pub; // set public encryption key i.sntru_pubkey = pq_keypair_to_pubkey(pq); auto bte = i.bt_encode(); const SharedSecret k{i.address_keys.Addr()}; crypto::xchacha20(reinterpret_cast(bte.data()), bte.size(), k, encrypted.nonce); std::memcpy(encrypted.introsetPayload.data(), bte.data(), bte.size()); if (not encrypted.Sign(derivedSignKey)) return std::nullopt; return encrypted; } } // namespace llarp::service