voidlizard
/
hbs2
mirror of https://github.com/voidlizard/hbs2
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

wip

This commit is contained in:
Sergey Ivanov 2023-07-18 20:38:01 +04:00
parent 5a8f1cef8b
commit fec0c23a7f
2 changed files with 29 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
hbs2-peer/app/EncryptionKeys.hs
View File

@ -73,4 +73,5 @@ encryptionHandshakeWorker pconf penv creds EncryptionHandshakeAdapter{..} = do
peers <- knownPeers @e pl peers <- knownPeers @e pl
forM_ peers \peer -> do forM_ peers \peer -> do
-- TODO: Только если ещё не знаем ключ ноды
sendBeginEncryptionExchange @e penv creds peer ourpubkey sendBeginEncryptionExchange @e penv creds peer ourpubkey

48
hbs2-peer/app/ProxyMessaging.hs
View File

@ -1,10 +1,8 @@
{-# Language TemplateHaskell #-} {-# Language TemplateHaskell #-}
module ProxyMessaging module ProxyMessaging
( ProxyMessaging ( ProxyMessaging(..)
, PlainProxyMessaging(..)
, newProxyMessaging , newProxyMessaging
, runProxyMessaging , runProxyMessaging
, proxyEncryptionKeys
, sendToPlainProxyMessaging , sendToPlainProxyMessaging
) where ) where
@ -49,10 +47,12 @@ data ProxyMessaging =
{ _proxyUDP :: MessagingUDP { _proxyUDP :: MessagingUDP
, _proxyTCP :: Maybe MessagingTCP , _proxyTCP :: Maybe MessagingTCP
, _proxyAnswers :: TQueue (From L4Proto, LBS.ByteString) , _proxyAnswers :: TQueue (From L4Proto, LBS.ByteString)
, _proxyEncryptionKeys :: TVar (Map (Peer L4Proto) (CommonSecret (Encryption L4Proto)))
}
newtype PlainProxyMessaging = PlainProxyMessaging ProxyMessaging , _proxy_getEncryptionKey :: Peer L4Proto -> IO (Maybe (CommonSecret (Encryption L4Proto)))
, _proxy_clearEncryptionKey :: Peer L4Proto -> IO ()
, _proxy_sendResetEncryptionKeys :: Peer L4Proto -> IO ()
, _proxy_sendBeginEncryptionExchange :: Peer L4Proto -> IO ()
}
-- 1 нода X создаёт себе Encrypt.Keypair -- 1 нода X создаёт себе Encrypt.Keypair
-- 2 подписывает из него публичный ключ ключом подписи ноды X и отправляет ноде Y -- 2 подписывает из него публичный ключ ключом подписи ноды X и отправляет ноде Y
@ -67,9 +67,16 @@ newProxyMessaging :: forall m . MonadIO m
-> m ProxyMessaging -> m ProxyMessaging
newProxyMessaging u t = liftIO do newProxyMessaging u t = liftIO do
ProxyMessaging u t let _proxyUDP = u
<$> newTQueueIO let _proxyTCP = t
<*> newTVarIO mempty _proxyAnswers <- newTQueueIO
let _proxy_getEncryptionKey = const (pure Nothing)
let _proxy_clearEncryptionKey = const (pure ())
let _proxy_sendResetEncryptionKeys = const (pure ())
let _proxy_sendBeginEncryptionExchange = const (pure ())
pure ProxyMessaging {..}
runProxyMessaging :: forall m . MonadIO m runProxyMessaging :: forall m . MonadIO m
=> ProxyMessaging => ProxyMessaging
@ -130,8 +137,8 @@ sendToProxyMessaging :: (MonadIO m)
sendToProxyMessaging bus t@(To whom) proto msg = do sendToProxyMessaging bus t@(To whom) proto msg = do
-- sendTo (view proxyUDP bus) t proto msg -- sendTo (view proxyUDP bus) t proto msg
-- trace $ "PROXY: SEND" <+> pretty whom -- trace $ "PROXY: SEND" <+> pretty whom
encKey <- Map.lookup whom <$> (liftIO . readTVarIO) (view proxyEncryptionKeys bus) mencKey <- liftIO $ _proxy_getEncryptionKey bus whom
cf <- case encKey of cf <- case mencKey of
Nothing -> do Nothing -> do
trace $ "ENCRYPTION SEND: sending plain message to" <+> pretty whom trace $ "ENCRYPTION SEND: sending plain message to" <+> pretty whom
pure id pure id
@ -148,8 +155,7 @@ receiveFromProxyMessaging bus _ = liftIO do
let answ = view proxyAnswers bus let answ = view proxyAnswers bus
rs <- atomically $ liftM2 (:) (readTQueue answ) (flushTQueue answ) rs <- atomically $ liftM2 (:) (readTQueue answ) (flushTQueue answ)
fmap catMaybes $ forM rs \(w@(From whom), msg) -> do fmap catMaybes $ forM rs \(w@(From whom), msg) -> do
encKeys <- (liftIO . readTVarIO) (view proxyEncryptionKeys bus) fmap (w, ) <$> dfm whom msg
fmap (w, ) <$> dfm whom (Map.lookup whom encKeys) msg
-- Здесь: -- Здесь:
-- 1. У нас есть ключ сессии и мы не смогли расшифровать -> do -- 1. У нас есть ключ сессии и мы не смогли расшифровать -> do
@ -161,23 +167,25 @@ receiveFromProxyMessaging bus _ = liftIO do
-- В протоколе пингов: -- В протоколе пингов:
-- 1. Если слишком долго нет ответа на ping, то удаляем у себя ключ, отправляем sendResetEncryptionKeys -- 1. Если слишком долго нет ответа на ping, то удаляем у себя ключ, отправляем sendResetEncryptionKeys
-- Выполняется в PeerInfo:
-- emit PeerExpiredEventKey (PeerExpiredEvent @e p mpeerData)
where where
dfm :: Peer L4Proto -> Maybe Encrypt.CombinedKey -> LBS.ByteString -> IO (Maybe LBS.ByteString) dfm :: Peer L4Proto -> LBS.ByteString -> IO (Maybe LBS.ByteString)
dfm = \whom mk msg -> case mk of dfm = \whom msg -> liftIO $ _proxy_getEncryptionKey bus whom >>= \case
Nothing -> do Nothing -> do
trace $ "ENCRYPTION RECEIVE: we do not have a key to decode" <+> pretty whom trace $ "ENCRYPTION RECEIVE: we do not have a key to decode" <+> pretty whom
-- TODO: run sendResetEncryptionKeys liftIO $ _proxy_sendBeginEncryptionExchange bus whom
pure (Just msg) pure (Just msg)
Just k -> runMaybeT $ Just k -> runMaybeT $
-- А будем-ка мы просто передавать сообщение дальше как есть, если не смогли расшифровать -- А будем-ка мы просто передавать сообщение дальше как есть, если не смогли расшифровать
(<|> (do (<|> (do
-- сотрём ключ из памяти liftIO $ _proxy_clearEncryptionKey bus whom
-- liftIO $ atomically $ modifyTVar' (view proxyEncryptionKeys bus) $ Lens.at whom .~ Nothing
-- TODO: удаляем у себя ключ liftIO $ _proxy_sendResetEncryptionKeys bus whom
-- TODO: run sendBeginEncryptionExchange
trace $ "ENCRYPTION RECEIVE: got plain message. clearing key of" <+> pretty whom trace $ "ENCRYPTION RECEIVE: got plain message. clearing key of" <+> pretty whom
pure msg pure msg