2019-12-05 20:16:18 -06:00
|
|
|
## Nim-LibP2P
|
|
|
|
## Copyright (c) 2019 Status Research & Development GmbH
|
|
|
|
## Licensed under either of
|
|
|
|
## * Apache License, version 2.0, ([LICENSE-APACHE](LICENSE-APACHE))
|
|
|
|
## * MIT license ([LICENSE-MIT](LICENSE-MIT))
|
|
|
|
## at your option.
|
|
|
|
## This file may not be copied, modified, or distributed except according to
|
|
|
|
## those terms.
|
|
|
|
|
2020-06-28 17:56:38 +02:00
|
|
|
{.push raises: [Defect].}
|
|
|
|
|
2020-09-28 16:11:18 +09:00
|
|
|
import hashes
|
2020-07-16 12:06:57 +02:00
|
|
|
import chronicles, metrics, stew/[byteutils, endians2]
|
2020-08-11 18:05:49 -06:00
|
|
|
import ./messages,
|
|
|
|
./protobuf,
|
2020-07-01 15:25:09 +09:00
|
|
|
../../../peerid,
|
2019-12-07 10:36:39 -06:00
|
|
|
../../../peerinfo,
|
2019-12-05 20:16:18 -06:00
|
|
|
../../../crypto/crypto,
|
|
|
|
../../../protobuf/minprotobuf
|
2020-07-16 12:06:57 +02:00
|
|
|
|
|
|
|
export messages
|
2019-12-05 20:16:18 -06:00
|
|
|
|
|
|
|
logScope:
|
2020-06-10 11:48:01 +03:00
|
|
|
topics = "pubsubmessage"
|
2019-12-05 20:16:18 -06:00
|
|
|
|
2020-06-28 17:56:38 +02:00
|
|
|
const PubSubPrefix = toBytes("libp2p-pubsub:")
|
2019-12-07 10:36:39 -06:00
|
|
|
|
2020-06-07 16:41:23 +09:00
|
|
|
declareCounter(libp2p_pubsub_sig_verify_success, "pubsub successfully validated messages")
|
|
|
|
declareCounter(libp2p_pubsub_sig_verify_failure, "pubsub failed validated messages")
|
2020-06-07 16:15:21 +09:00
|
|
|
|
2020-10-21 12:26:04 +09:00
|
|
|
func defaultMsgIdProvider*(m: Message): MessageID =
|
2021-06-02 07:39:10 -06:00
|
|
|
let mid =
|
2020-10-21 12:26:04 +09:00
|
|
|
if m.seqno.len > 0 and m.fromPeer.data.len > 0:
|
|
|
|
byteutils.toHex(m.seqno) & $m.fromPeer
|
|
|
|
else:
|
|
|
|
# This part is irrelevant because it's not standard,
|
2021-06-02 07:39:10 -06:00
|
|
|
# We use it exclusively for testing basically and users should
|
2020-10-21 12:26:04 +09:00
|
|
|
# implement their own logic in the case they use anonymization
|
|
|
|
$m.data.hash & $m.topicIDs.hash
|
|
|
|
mid.toBytes()
|
2020-05-27 12:33:49 -06:00
|
|
|
|
2020-09-04 18:31:43 +02:00
|
|
|
proc sign*(msg: Message, privateKey: PrivateKey): CryptoResult[seq[byte]] =
|
2020-09-25 18:39:34 +02:00
|
|
|
ok((? privateKey.sign(PubSubPrefix & encodeMessage(msg, false))).getBytes())
|
2019-12-05 20:16:18 -06:00
|
|
|
|
2020-09-24 00:56:33 +09:00
|
|
|
proc verify*(m: Message): bool =
|
2019-12-05 20:16:18 -06:00
|
|
|
if m.signature.len > 0 and m.key.len > 0:
|
|
|
|
var msg = m
|
|
|
|
msg.signature = @[]
|
|
|
|
msg.key = @[]
|
|
|
|
|
|
|
|
var remote: Signature
|
|
|
|
var key: PublicKey
|
|
|
|
if remote.init(m.signature) and key.init(m.key):
|
2019-12-16 23:24:03 -06:00
|
|
|
trace "verifying signature", remoteSignature = remote
|
2020-09-25 18:39:34 +02:00
|
|
|
result = remote.verify(PubSubPrefix & encodeMessage(msg, false), key)
|
2020-06-28 17:56:38 +02:00
|
|
|
|
2020-06-07 16:15:21 +09:00
|
|
|
if result:
|
|
|
|
libp2p_pubsub_sig_verify_success.inc()
|
|
|
|
else:
|
|
|
|
libp2p_pubsub_sig_verify_failure.inc()
|
2019-12-05 20:16:18 -06:00
|
|
|
|
2020-06-28 17:56:38 +02:00
|
|
|
proc init*(
|
|
|
|
T: type Message,
|
2020-09-24 00:56:33 +09:00
|
|
|
peer: Option[PeerInfo],
|
2020-06-28 17:56:38 +02:00
|
|
|
data: seq[byte],
|
|
|
|
topic: string,
|
2020-09-24 00:56:33 +09:00
|
|
|
seqno: Option[uint64],
|
2021-06-02 07:39:10 -06:00
|
|
|
sign: bool = true): Message
|
|
|
|
{.gcsafe, raises: [Defect, LPError].} =
|
2020-09-24 00:56:33 +09:00
|
|
|
var msg = Message(data: data, topicIDs: @[topic])
|
2019-12-05 20:16:18 -06:00
|
|
|
|
2020-09-24 00:56:33 +09:00
|
|
|
# order matters, we want to include seqno in the signature
|
2020-09-25 18:39:34 +02:00
|
|
|
if seqno.isSome:
|
2020-09-24 00:56:33 +09:00
|
|
|
msg.seqno = @(seqno.get().toBytesBE())
|
2020-09-04 18:31:43 +02:00
|
|
|
|
2020-09-24 00:56:33 +09:00
|
|
|
if peer.isSome:
|
|
|
|
let peer = peer.get()
|
|
|
|
msg.fromPeer = peer.peerId
|
|
|
|
if sign:
|
|
|
|
if peer.keyType != KeyType.HasPrivate:
|
2021-06-02 07:39:10 -06:00
|
|
|
raise (ref LPError)(msg: "Cannot sign message without private key")
|
|
|
|
|
|
|
|
msg.signature = sign(msg, peer.privateKey).expect("Couldn't sign message!")
|
|
|
|
msg.key = peer.privateKey
|
|
|
|
.getKey()
|
|
|
|
.expect("Expected a Private Key!")
|
|
|
|
.getBytes()
|
|
|
|
.expect("Couldn't get Private Key bytes!")
|
2020-09-24 00:56:33 +09:00
|
|
|
elif sign:
|
2021-06-02 07:39:10 -06:00
|
|
|
raise (ref LPError)(msg: "Cannot sign message without peer info")
|
2020-09-24 00:56:33 +09:00
|
|
|
|
|
|
|
msg
|