aljaz/sphinx-key
1
1
Fork 0
mirror of https://github.com/stakwork/sphinx-key.git synced 2025-12-17 15:24:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

update tester main, Nonce message is the only one with nonce unchecked

Browse Source
This commit is contained in:
Evan Feenstra
2022-09-09 11:40:23 -07:00
parent 13f23f7111
commit 8c48ebda07
8 changed files with 95 additions and 80 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
parser/Cargo.toml
View File

@@ -8,7 +8,7 @@ vls-protocol = { git = "https://gitlab.com/lightning-signer/validating-lightning
serde = { version = "1.0", default-features = false } serde = { version = "1.0", default-features = false }
rmp-serde = "1.1.0" rmp-serde = "1.1.0"
serde_bolt = { version = "0.2", default-features = false } serde_bolt = { version = "0.2", default-features = false }
sphinx-auther = "0.1.9" sphinx-auther = "0.1.10"
anyhow = "1" anyhow = "1"
[features] [features]

24
parser/src/control.rs
View File

@@ -68,21 +68,39 @@ impl Controller {
self.2 = self.2 + 1; self.2 = self.2 + 1;
Ok(ret) Ok(ret)
} }
pub fn parse_msg_no_nonce(&mut self, input: &[u8]) -> anyhow::Result<ControlMessage> {
let (msg, _nonce) = nonce::parse_msg_no_nonce(input, &self.1)?;
let ret = rmp_serde::from_slice(&msg)?;
Ok(ret)
}
pub fn parse_response(&self, input: &[u8]) -> anyhow::Result<ControlResponse> { pub fn parse_response(&self, input: &[u8]) -> anyhow::Result<ControlResponse> {
Ok(rmp_serde::from_slice(input)?) Ok(rmp_serde::from_slice(input)?)
} }
pub fn handle(&mut self, input: &[u8]) -> anyhow::Result<Vec<u8>> { pub fn handle(&mut self, input: &[u8]) -> anyhow::Result<(Vec<u8>, Option<Policy>)> {
let msg = self.parse_msg(input)?; let msg = self.parse_msg_no_nonce(input)?;
// increment the nonce EXCEPT for Nonce requests
match msg {
ControlMessage::Nonce => (),
_ => {
self.2 = self.2 + 1;
}
}
let mut store = self.3.lock().unwrap(); let mut store = self.3.lock().unwrap();
let mut new_policy = None;
let res = match msg { let res = match msg {
ControlMessage::Nonce => ControlResponse::Nonce(self.2), ControlMessage::Nonce => ControlResponse::Nonce(self.2),
ControlMessage::ResetWifi => { ControlMessage::ResetWifi => {
store.reset(); store.reset();
ControlResponse::ResetWifi ControlResponse::ResetWifi
} }
ControlMessage::UpdatePolicy(np) => {
new_policy = Some(np.clone());
ControlResponse::PolicyUpdated(np)
}
_ => ControlResponse::Nonce(self.2), _ => ControlResponse::Nonce(self.2),
}; };
Ok(self.build_response(res)?) let response = self.build_response(res)?;
Ok((response, new_policy))
} }
} }

18
signer/src/lib.rs
View File

@@ -10,7 +10,7 @@ use lightning_signer::util::clock::StandardClock;
use lightning_signer::util::velocity::{VelocityControlIntervalType, VelocityControlSpec}; use lightning_signer::util::velocity::{VelocityControlIntervalType, VelocityControlSpec};
use randomstartingtime::RandomStartingTimeFactory; use randomstartingtime::RandomStartingTimeFactory;
use std::sync::Arc; use std::sync::Arc;
use vls_protocol::model::PubKey; use vls_protocol::model::{PubKey, Secret};
use vls_protocol::msgs::{self, read_serial_request_header, write_serial_response_header, Message}; use vls_protocol::msgs::{self, read_serial_request_header, write_serial_response_header, Message};
use vls_protocol::serde_bolt::WireString; use vls_protocol::serde_bolt::WireString;
use vls_protocol_signer::handler::{Handler, RootHandler}; use vls_protocol_signer::handler::{Handler, RootHandler};
@@ -141,6 +141,22 @@ pub fn handle(
Ok(out_md.bytes()) Ok(out_md.bytes())
} }
pub fn make_init_msg(network: Network, seed: [u8; 32]) -> anyhow::Result<Vec<u8>> {
let allowlist = Vec::new();
log::info!("allowlist {:?} seed {:?}", allowlist, seed);
let init = msgs::HsmdInit2 {
derivation_style: 0,
network_name: WireString(network.to_string().as_bytes().to_vec()),
dev_seed: Some(Secret(seed)),
dev_allowlist: allowlist,
};
let sequence = 0;
let mut md = MsgDriver::new_empty();
msgs::write_serial_request_header(&mut md, sequence, 0)?;
msgs::write(&mut md, init)?;
Ok(md.bytes())
}
pub fn parse_ping_and_form_response(msg_bytes: Vec<u8>) -> Vec<u8> { pub fn parse_ping_and_form_response(msg_bytes: Vec<u8>) -> Vec<u8> {
let mut m = MsgDriver::new(msg_bytes); let mut m = MsgDriver::new(msg_bytes);
let (sequence, _dbid) = msgs::read_serial_request_header(&mut m).expect("read ping header"); let (sequence, _dbid) = msgs::read_serial_request_header(&mut m).expect("read ping header");

4
sphinx-key/Cargo.lock generated
View File

@@ -1971,9 +1971,9 @@ dependencies = [
[[package]] [[package]]
name = "sphinx-auther" name = "sphinx-auther"
version = "0.1.9" version = "0.1.10"
source = "registry+https://github.com/rust-lang/crates.io-index" source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "07ba95c8bd0600a9853ed6320701423362bfeac8d69034ed9585cb289d849701" checksum = "452ac3986f03e8d403a21f81883d0f5058152af4ae006a26ee00e3a31af20302"
dependencies = [ dependencies = [
"anyhow", "anyhow",
"base64", "base64",

4
sphinx-key/src/core/events.rs
View File

@@ -1,9 +1,9 @@
use crate::conn::mqtt::{CONTROL_RETURN_TOPIC, CONTROL_TOPIC, QOS, RETURN_TOPIC, VLS_TOPIC}; use crate::conn::mqtt::{CONTROL_RETURN_TOPIC, CONTROL_TOPIC, QOS, RETURN_TOPIC, VLS_TOPIC};
use crate::core::config::Config; use crate::core::config::Config;
use crate::core::control::{controller_from_seed, FlashPersister}; use crate::core::control::{controller_from_seed, FlashPersister};
use crate::core::init::make_init_msg;
use sphinx_key_signer::lightning_signer::bitcoin::Network; use sphinx_key_signer::lightning_signer::bitcoin::Network;
use sphinx_key_signer::make_init_msg;
use sphinx_key_signer::vls_protocol::model::PubKey; use sphinx_key_signer::vls_protocol::model::PubKey;
use sphinx_key_signer::{self, InitResponse}; use sphinx_key_signer::{self, InitResponse};
use std::sync::{mpsc, Arc, Mutex}; use std::sync::{mpsc, Arc, Mutex};
@@ -111,7 +111,7 @@ pub fn make_event_loop(
Event::Control(ref msg_bytes) => { Event::Control(ref msg_bytes) => {
log::info!("GOT A CONTROL MSG"); log::info!("GOT A CONTROL MSG");
match ctrlr.handle(msg_bytes) { match ctrlr.handle(msg_bytes) {
Ok(response) => { Ok((response, _new_policy)) => {
// log::info!("CONTROL MSG {:?}", response); // log::info!("CONTROL MSG {:?}", response);
mqtt.publish(CONTROL_RETURN_TOPIC, QOS, false, &response) mqtt.publish(CONTROL_RETURN_TOPIC, QOS, false, &response)
.expect("could not publish control response"); .expect("could not publish control response");

20
sphinx-key/src/core/init.rs
View File

@@ -1,20 +0,0 @@
use sphinx_key_signer::lightning_signer::bitcoin::Network;
use sphinx_key_signer::vls_protocol::model::Secret;
use sphinx_key_signer::vls_protocol::{msgs, serde_bolt::WireString};
use sphinx_key_signer::MsgDriver;
pub fn make_init_msg(network: Network, seed: [u8; 32]) -> anyhow::Result<Vec<u8>> {
let allowlist = Vec::new();
log::info!("allowlist {:?} seed {:?}", allowlist, seed);
let init = msgs::HsmdInit2 {
derivation_style: 0,
network_name: WireString(network.to_string().as_bytes().to_vec()),
dev_seed: Some(Secret(seed)),
dev_allowlist: allowlist,
};
let sequence = 0;
let mut md = MsgDriver::new_empty();
msgs::write_serial_request_header(&mut md, sequence, 0)?;
msgs::write(&mut md, init)?;
Ok(md.bytes())
}

1
sphinx-key/src/core/mod.rs
View File

@@ -1,4 +1,3 @@
pub mod config; pub mod config;
pub mod control; pub mod control;
pub mod events; pub mod events;
pub mod init;

62
tester/src/main.rs
View File

@@ -7,6 +7,7 @@ use rumqttc::{self, AsyncClient, Event, MqttOptions, Packet, QoS};
use sphinx_key_signer::control::Controller; use sphinx_key_signer::control::Controller;
use sphinx_key_signer::vls_protocol::{model::PubKey, msgs}; use sphinx_key_signer::vls_protocol::{model::PubKey, msgs};
use sphinx_key_signer::{self, InitResponse}; use sphinx_key_signer::{self, InitResponse};
use std::convert::TryInto;
use std::env; use std::env;
use std::error::Error; use std::error::Error;
use std::str::FromStr; use std::str::FromStr;
@@ -68,10 +69,11 @@ async fn main() -> Result<(), Box<dyn Error>> {
.await .await
.expect("could not mqtt subscribe"); .expect("could not mqtt subscribe");
let network = Network::Regtest;
let seed_string: String = env::var("SEED").expect("no seed"); let seed_string: String = env::var("SEED").expect("no seed");
let seed = hex::decode(seed_string).expect("couldnt decode seed"); let seed = hex::decode(seed_string).expect("couldnt decode seed");
// make the controller to validate Control messages // make the controller to validate Control messages
let mut ctrlr = controller_from_seed(&Network::Regtest, &seed); let mut ctrlr = controller_from_seed(&network, &seed);
if is_test { if is_test {
// test handler loop // test handler loop
@@ -103,7 +105,7 @@ async fn main() -> Result<(), Box<dyn Error>> {
} }
CONTROL_TOPIC => { CONTROL_TOPIC => {
match ctrlr.handle(&msg_bytes) { match ctrlr.handle(&msg_bytes) {
Ok(response) => { Ok((response, _new_policy)) => {
client client
.publish( .publish(
CONTROL_PUB_TOPIC, CONTROL_PUB_TOPIC,
@@ -129,39 +131,23 @@ async fn main() -> Result<(), Box<dyn Error>> {
} }
} }
} else { } else {
// once the init loop is done, the root_handler is returned let seed32: [u8; 32] = seed.try_into().expect("wrong seed");
let root_handler = loop { let init_msg =
if let Ok(init_event) = eventloop.poll().await { sphinx_key_signer::make_init_msg(network, seed32).expect("failed to make init msg");
// this may be another kind of message like MQTT ConnAck
// loop around again and wait for the init
if let Some((_topic, init_msg_bytes)) = incoming_bytes(init_event) {
let InitResponse { let InitResponse {
root_handler, root_handler,
init_reply, init_reply: _,
} = sphinx_key_signer::init(init_msg_bytes, Network::Regtest) } = sphinx_key_signer::init(init_msg, network).expect("failed to init signer");
.expect("failed to init signer");
client
.publish(PUB_TOPIC, QoS::AtMostOnce, false, init_reply)
.await
.expect("could not publish init response");
// return the root_handler and finish the init loop
break Some(root_handler);
}
} else {
tokio::time::sleep(Duration::from_secs(1)).await;
log::warn!("failed to initialize! Lost connection");
break None;
}
};
// the actual handler loop // the actual handler loop
loop { loop {
if let Some(rh) = &root_handler {
match eventloop.poll().await { match eventloop.poll().await {
Ok(event) => { Ok(event) => {
let dummy_peer = PubKey([0; 33]); let dummy_peer = PubKey([0; 33]);
if let Some((_topic, msg_bytes)) = incoming_bytes(event) { if let Some((topic, msg_bytes)) = incoming_bytes(event) {
match topic.as_str() {
SUB_TOPIC => {
match sphinx_key_signer::handle( match sphinx_key_signer::handle(
rh, &root_handler,
msg_bytes, msg_bytes,
dummy_peer.clone(), dummy_peer.clone(),
is_log, is_log,
@@ -173,6 +159,25 @@ async fn main() -> Result<(), Box<dyn Error>> {
Err(e) => panic!("HANDLE FAILED {:?}", e), Err(e) => panic!("HANDLE FAILED {:?}", e),
}; };
} }
CONTROL_TOPIC => {
match ctrlr.handle(&msg_bytes) {
Ok((response, _new_policy)) => {
client
.publish(
CONTROL_PUB_TOPIC,
QoS::AtMostOnce,
false,
response,
)
.await
.expect("could not mqtt publish");
}
Err(e) => log::warn!("error parsing ctrl msg {:?}", e),
};
}
_ => log::info!("invalid topic"),
}
}
} }
Err(e) => { Err(e) => {
log::warn!("diconnected {:?}", e); log::warn!("diconnected {:?}", e);
@@ -180,9 +185,6 @@ async fn main() -> Result<(), Box<dyn Error>> {
break; // break out of this loop to reconnect break; // break out of this loop to reconnect
} }
} }
} else {
break;
}
} }
} }
} }