mirror of
https://github.com/oxen-io/lokinet.git
synced 2024-11-17 15:25:35 +00:00
68e67c881b
- RemoteRC supplants most of the functionality throughout the code of RouterContact - Next step will be to sort out CI issues, then see if we can get rid of either LocalRC (and therefore RouterContact entirely)
107 lines
2.7 KiB
C++
107 lines
2.7 KiB
C++
#include "constants/version.hpp"
|
|
#include "crypto/crypto.hpp"
|
|
#include "net/net.hpp"
|
|
#include "router_contact.hpp"
|
|
#include "util/bencode.hpp"
|
|
#include "util/buffer.hpp"
|
|
#include "util/file.hpp"
|
|
#include "util/time.hpp"
|
|
|
|
#include <oxenc/bt_serialize.h>
|
|
|
|
namespace llarp
|
|
{
|
|
RemoteRC::RemoteRC(oxenc::bt_dict_consumer btdc)
|
|
{
|
|
try
|
|
{
|
|
bt_load(btdc);
|
|
|
|
btdc.require_signature("~", [this](ustring_view msg, ustring_view sig) {
|
|
if (sig.size() != 64)
|
|
throw std::runtime_error{"Invalid signature: not 64 bytes"};
|
|
|
|
if (is_expired(time_now_ms()))
|
|
throw std::runtime_error{"Unable to verify expired RemoteRC!"};
|
|
|
|
// TODO: revisit if this is needed; detail from previous implementation
|
|
const auto* net = net::Platform::Default_ptr();
|
|
|
|
if (net->IsBogon(addr().in4()) and BLOCK_BOGONS)
|
|
{
|
|
auto err = "Unable to verify expired RemoteRC!";
|
|
log::info(logcat, err);
|
|
throw std::runtime_error{err};
|
|
}
|
|
|
|
if (not crypto::verify(router_id(), msg, sig))
|
|
throw std::runtime_error{"Failed to verify RemoteRC"};
|
|
});
|
|
}
|
|
catch (const std::exception& e)
|
|
{
|
|
log::warning(logcat, "Failed to parse RemoteRC: {}", e.what());
|
|
throw;
|
|
}
|
|
}
|
|
|
|
void
|
|
RemoteRC::bt_verify(oxenc::bt_dict_consumer& data, bool reject_expired) const
|
|
{
|
|
data.require_signature("~", [this, reject_expired](ustring_view msg, ustring_view sig) {
|
|
if (sig.size() != 64)
|
|
throw std::runtime_error{"Invalid signature: not 64 bytes"};
|
|
|
|
if (is_expired(time_now_ms()) and reject_expired)
|
|
throw std::runtime_error{"Unable to verify expired RemoteRC!"};
|
|
|
|
// TODO: revisit if this is needed; detail from previous implementation
|
|
const auto* net = net::Platform::Default_ptr();
|
|
|
|
if (net->IsBogon(addr().in4()) and BLOCK_BOGONS)
|
|
{
|
|
auto err = "Unable to verify expired RemoteRC!";
|
|
log::info(logcat, err);
|
|
throw std::runtime_error{err};
|
|
}
|
|
|
|
if (not crypto::verify(router_id(), msg, sig))
|
|
throw std::runtime_error{"Failed to verify RemoteRC"};
|
|
});
|
|
}
|
|
|
|
bool
|
|
RemoteRC::read(const fs::path& fname)
|
|
{
|
|
ustring buf;
|
|
buf.reserve(MAX_RC_SIZE);
|
|
|
|
try
|
|
{
|
|
util::file_to_buffer(fname, buf.data(), MAX_RC_SIZE);
|
|
}
|
|
catch (const std::exception& e)
|
|
{
|
|
log::error(logcat, "Failed to read RC from {}: {}", fname, e.what());
|
|
return false;
|
|
}
|
|
|
|
oxenc::bt_dict_consumer btdc{buf};
|
|
bt_load(btdc);
|
|
bt_verify(btdc);
|
|
|
|
_payload = buf;
|
|
|
|
return true;
|
|
}
|
|
|
|
bool
|
|
RemoteRC::verify() const
|
|
{
|
|
oxenc::bt_dict_consumer btdc{_payload};
|
|
bt_verify(btdc);
|
|
return true;
|
|
}
|
|
|
|
} // namespace llarp
|