mirror of
https://github.com/oxen-io/lokinet.git
synced 2024-11-15 12:13:24 +00:00
66ad28a2f1
- Up and running locally, no connections yet - Next: flip testnet and do the gosh dang thing
192 lines
4.3 KiB
C++
192 lines
4.3 KiB
C++
#include "identity.hpp"
|
|
|
|
#include <llarp/crypto/crypto.hpp>
|
|
|
|
namespace llarp::service
|
|
{
|
|
std::string
|
|
Identity::bt_encode() const
|
|
{
|
|
oxenc::bt_dict_producer btdp;
|
|
|
|
btdp.append("s", signkey.ToView());
|
|
btdp.append("v", version);
|
|
|
|
return std::move(btdp).str();
|
|
}
|
|
|
|
void
|
|
Identity::bt_decode(std::string buf)
|
|
{
|
|
try
|
|
{
|
|
oxenc::bt_dict_consumer btdc{buf};
|
|
|
|
signkey.from_string(btdc.require<std::string>("s"));
|
|
version = btdc.require<uint64_t>("v");
|
|
}
|
|
catch (...)
|
|
{
|
|
log::warning(logcat, "Identity failed to parse bt-encoded contents!");
|
|
throw;
|
|
}
|
|
}
|
|
|
|
bool
|
|
Identity::decode_key(const llarp_buffer_t& key, llarp_buffer_t* buf)
|
|
{
|
|
bool read = false;
|
|
if (!BEncodeMaybeReadDictEntry("s", signkey, read, key, buf))
|
|
return false;
|
|
if (!BEncodeMaybeReadDictInt("v", version, read, key, buf))
|
|
return false;
|
|
if (not read)
|
|
return bencode_discard(buf);
|
|
return true;
|
|
}
|
|
|
|
void
|
|
Identity::Clear()
|
|
{
|
|
signkey.Zero();
|
|
enckey.Zero();
|
|
pq.Zero();
|
|
derivedSignKey.Zero();
|
|
vanity.Zero();
|
|
}
|
|
|
|
void
|
|
Identity::RegenerateKeys()
|
|
{
|
|
crypto::identity_keygen(signkey);
|
|
crypto::encryption_keygen(enckey);
|
|
pub.Update(seckey_to_pubkey(signkey), seckey_to_pubkey(enckey));
|
|
crypto::pqe_keygen(pq);
|
|
if (not crypto::derive_subkey_private(derivedSignKey, signkey, 1))
|
|
{
|
|
throw std::runtime_error("failed to derive subkey");
|
|
}
|
|
}
|
|
|
|
bool
|
|
Identity::KeyExchange(
|
|
path_dh_func dh,
|
|
SharedSecret& result,
|
|
const ServiceInfo& other,
|
|
const KeyExchangeNonce& N) const
|
|
{
|
|
return dh(result, other.EncryptionPublicKey(), enckey, N);
|
|
}
|
|
|
|
bool
|
|
Identity::Sign(Signature& sig, uint8_t* buf, size_t size) const
|
|
{
|
|
return crypto::sign(sig, signkey, buf, size);
|
|
}
|
|
|
|
void
|
|
Identity::EnsureKeys(fs::path fname, bool needBackup)
|
|
{
|
|
// make sure we are empty
|
|
Clear();
|
|
|
|
std::string buf;
|
|
|
|
// this can throw
|
|
bool exists = fs::exists(fname);
|
|
|
|
if (exists and needBackup)
|
|
{
|
|
KeyManager::copy_backup_keyfile(fname);
|
|
exists = false;
|
|
}
|
|
|
|
// check for file
|
|
if (!exists)
|
|
{
|
|
// regen and encode
|
|
RegenerateKeys();
|
|
|
|
buf = bt_encode();
|
|
|
|
// write
|
|
try
|
|
{
|
|
util::buffer_to_file(fname, buf.data(), buf.size());
|
|
}
|
|
catch (const std::exception& e)
|
|
{
|
|
throw std::runtime_error{fmt::format("failed to write {}: {}", fname, e.what())};
|
|
}
|
|
return;
|
|
}
|
|
|
|
if (not fs::is_regular_file(fname))
|
|
{
|
|
throw std::invalid_argument{fmt::format("{} is not a regular file", fname)};
|
|
}
|
|
|
|
// read file
|
|
try
|
|
{
|
|
util::file_to_buffer(fname, buf.data(), buf.size());
|
|
}
|
|
catch (const std::length_error&)
|
|
{
|
|
throw std::length_error{"service identity too big"};
|
|
}
|
|
|
|
// (don't catch io error exceptions)
|
|
bt_decode(buf);
|
|
|
|
// ensure that the encryption key is set
|
|
if (enckey.IsZero())
|
|
crypto::encryption_keygen(enckey);
|
|
|
|
// also ensure the ntru key is set
|
|
if (pq.IsZero())
|
|
crypto::pqe_keygen(pq);
|
|
|
|
std::optional<VanityNonce> van;
|
|
if (!vanity.IsZero())
|
|
van = vanity;
|
|
// update pubkeys
|
|
pub.Update(seckey_to_pubkey(signkey), seckey_to_pubkey(enckey), van);
|
|
if (not crypto::derive_subkey_private(derivedSignKey, signkey, 1))
|
|
{
|
|
throw std::runtime_error("failed to derive subkey");
|
|
}
|
|
}
|
|
|
|
std::optional<EncryptedIntroSet>
|
|
Identity::encrypt_and_sign_introset(const IntroSet& other_i, llarp_time_t now) const
|
|
{
|
|
EncryptedIntroSet encrypted;
|
|
|
|
if (other_i.intros.empty())
|
|
return std::nullopt;
|
|
|
|
IntroSet i{other_i};
|
|
encrypted.nonce.Randomize();
|
|
// set timestamp
|
|
// TODO: round to nearest 1000 ms
|
|
i.time_signed = now;
|
|
encrypted.signedAt = now;
|
|
// set service info
|
|
i.address_keys = pub;
|
|
// set public encryption key
|
|
i.sntru_pubkey = pq_keypair_to_pubkey(pq);
|
|
|
|
auto bte = i.bt_encode();
|
|
|
|
const SharedSecret k{i.address_keys.Addr()};
|
|
crypto::xchacha20(reinterpret_cast<uint8_t*>(bte.data()), bte.size(), k, encrypted.nonce);
|
|
|
|
std::memcpy(encrypted.introsetPayload.data(), bte.data(), bte.size());
|
|
|
|
if (not encrypted.Sign(derivedSignKey))
|
|
return std::nullopt;
|
|
return encrypted;
|
|
}
|
|
} // namespace llarp::service
|