2020-07-14 00:46:05 +00:00
|
|
|
package connections
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"cwtch.im/cwtch/protocol/groups"
|
|
|
|
|
"encoding/json"
|
|
|
|
|
"errors"
|
2021-04-09 01:22:08 +00:00
|
|
|
"git.openprivacy.ca/cwtch.im/tapir"
|
|
|
|
|
"git.openprivacy.ca/cwtch.im/tapir/applications"
|
|
|
|
|
"git.openprivacy.ca/cwtch.im/tapir/networks/tor"
|
|
|
|
|
"git.openprivacy.ca/cwtch.im/tapir/primitives"
|
|
|
|
|
"git.openprivacy.ca/cwtch.im/tapir/primitives/privacypass"
|
2020-07-14 00:46:05 +00:00
|
|
|
"git.openprivacy.ca/openprivacy/connectivity"
|
|
|
|
|
"git.openprivacy.ca/openprivacy/log"
|
|
|
|
|
"github.com/gtank/ristretto255"
|
2021-09-30 00:57:13 +00:00
|
|
|
"reflect"
|
2021-05-10 23:37:20 +00:00
|
|
|
"sync"
|
2021-09-30 00:57:13 +00:00
|
|
|
"time"
|
2020-07-14 00:46:05 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// NewTokenBoardClient generates a new Client for Token Board
|
2021-06-29 21:38:53 +00:00
|
|
|
func NewTokenBoardClient(acn connectivity.ACN, Y *ristretto255.Element, tokenServiceOnion string, lastKnownSignature []byte, groupMessageHandler func(server string, gm *groups.EncryptedGroupMessage), serverAuthedHandler func(server string), serverSyncedHandler func(server string), serverClosedHandler func(server string)) tapir.Application {
|
2020-07-14 00:46:05 +00:00
|
|
|
tba := new(TokenBoardClient)
|
|
|
|
|
tba.acn = acn
|
|
|
|
|
tba.tokenService = privacypass.NewTokenServer()
|
|
|
|
|
tba.tokenService.Y = Y
|
|
|
|
|
tba.tokenServiceOnion = tokenServiceOnion
|
|
|
|
|
tba.receiveGroupMessageHandler = groupMessageHandler
|
2021-06-29 21:38:53 +00:00
|
|
|
tba.serverAuthedHandler = serverAuthedHandler
|
2020-07-14 00:46:05 +00:00
|
|
|
tba.serverSyncedHandler = serverSyncedHandler
|
2021-05-07 20:54:12 +00:00
|
|
|
tba.serverClosedHandler = serverClosedHandler
|
|
|
|
|
tba.lastKnownSignature = lastKnownSignature
|
2020-07-14 00:46:05 +00:00
|
|
|
return tba
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TokenBoardClient defines a client for the TokenBoard server
|
|
|
|
|
type TokenBoardClient struct {
|
|
|
|
|
applications.AuthApp
|
|
|
|
|
connection tapir.Connection
|
|
|
|
|
receiveGroupMessageHandler func(server string, gm *groups.EncryptedGroupMessage)
|
2021-06-29 21:38:53 +00:00
|
|
|
serverAuthedHandler func(server string)
|
2020-07-14 00:46:05 +00:00
|
|
|
serverSyncedHandler func(server string)
|
2021-05-07 20:54:12 +00:00
|
|
|
serverClosedHandler func(server string)
|
2020-07-14 00:46:05 +00:00
|
|
|
|
|
|
|
|
// Token service handling
|
2021-05-07 20:54:12 +00:00
|
|
|
acn connectivity.ACN
|
|
|
|
|
tokens []*privacypass.Token
|
2021-05-10 23:37:20 +00:00
|
|
|
tokenLock sync.Mutex
|
2021-05-07 20:54:12 +00:00
|
|
|
tokenService *privacypass.TokenServer
|
|
|
|
|
tokenServiceOnion string
|
|
|
|
|
lastKnownSignature []byte
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// NewInstance Client a new TokenBoardApp
|
|
|
|
|
func (ta *TokenBoardClient) NewInstance() tapir.Application {
|
|
|
|
|
tba := new(TokenBoardClient)
|
2021-06-29 21:38:53 +00:00
|
|
|
tba.serverAuthedHandler = ta.serverAuthedHandler
|
2020-07-14 00:46:05 +00:00
|
|
|
tba.serverSyncedHandler = ta.serverSyncedHandler
|
2021-05-07 20:54:12 +00:00
|
|
|
tba.serverClosedHandler = ta.serverClosedHandler
|
2020-07-14 00:46:05 +00:00
|
|
|
tba.receiveGroupMessageHandler = ta.receiveGroupMessageHandler
|
|
|
|
|
tba.acn = ta.acn
|
|
|
|
|
tba.tokenService = ta.tokenService
|
|
|
|
|
tba.tokenServiceOnion = ta.tokenServiceOnion
|
2021-05-07 22:34:48 +00:00
|
|
|
tba.lastKnownSignature = ta.lastKnownSignature
|
2020-07-14 00:46:05 +00:00
|
|
|
return tba
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Init initializes the cryptographic TokenBoardApp
|
|
|
|
|
func (ta *TokenBoardClient) Init(connection tapir.Connection) {
|
|
|
|
|
ta.AuthApp.Init(connection)
|
|
|
|
|
if connection.HasCapability(applications.AuthCapability) {
|
|
|
|
|
ta.connection = connection
|
2021-06-29 21:38:53 +00:00
|
|
|
ta.serverAuthedHandler(ta.connection.Hostname())
|
2022-04-20 20:10:07 +00:00
|
|
|
log.Debugf("Successfully Initialized Connection to %v", connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
go ta.Listen()
|
2021-05-10 23:37:20 +00:00
|
|
|
// Optimistically acquire many tokens for this server...
|
|
|
|
|
go ta.MakePayment()
|
|
|
|
|
go ta.MakePayment()
|
2020-07-14 00:46:05 +00:00
|
|
|
ta.Replay()
|
|
|
|
|
} else {
|
|
|
|
|
connection.Close()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Listen processes the messages for this application
|
|
|
|
|
func (ta *TokenBoardClient) Listen() {
|
|
|
|
|
for {
|
|
|
|
|
log.Debugf("Client waiting...")
|
|
|
|
|
data := ta.connection.Expect()
|
|
|
|
|
if len(data) == 0 {
|
|
|
|
|
log.Debugf("Server closed the connection...")
|
2021-05-07 20:54:12 +00:00
|
|
|
ta.serverClosedHandler(ta.connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
return // connection is closed
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// We always expect the server to follow protocol, and the second it doesn't we close the connection
|
|
|
|
|
var message groups.Message
|
|
|
|
|
if err := json.Unmarshal(data, &message); err != nil {
|
|
|
|
|
log.Debugf("Server sent an unexpected message, closing the connection: %v", err)
|
2021-05-07 20:54:12 +00:00
|
|
|
ta.serverClosedHandler(ta.connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
ta.connection.Close()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch message.MessageType {
|
|
|
|
|
case groups.NewMessageMessage:
|
|
|
|
|
if message.NewMessage != nil {
|
|
|
|
|
ta.receiveGroupMessageHandler(ta.connection.Hostname(), &message.NewMessage.EGM)
|
|
|
|
|
} else {
|
|
|
|
|
log.Debugf("Server sent an unexpected NewMessage, closing the connection: %s", data)
|
2021-05-07 20:54:12 +00:00
|
|
|
ta.serverClosedHandler(ta.connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
ta.connection.Close()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
case groups.PostResultMessage:
|
|
|
|
|
// TODO handle failure
|
|
|
|
|
case groups.ReplayResultMessage:
|
|
|
|
|
if message.ReplayResult != nil {
|
|
|
|
|
log.Debugf("Replaying %v Messages...", message.ReplayResult.NumMessages)
|
|
|
|
|
for i := 0; i < message.ReplayResult.NumMessages; i++ {
|
|
|
|
|
data := ta.connection.Expect()
|
2021-05-07 20:54:12 +00:00
|
|
|
|
|
|
|
|
if len(data) == 0 {
|
|
|
|
|
log.Debugf("Server sent an unexpected EncryptedGroupMessage, closing the connection")
|
|
|
|
|
ta.serverClosedHandler(ta.connection.Hostname())
|
|
|
|
|
ta.connection.Close()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-14 00:46:05 +00:00
|
|
|
egm := &groups.EncryptedGroupMessage{}
|
|
|
|
|
if err := json.Unmarshal(data, egm); err == nil {
|
|
|
|
|
ta.receiveGroupMessageHandler(ta.connection.Hostname(), egm)
|
2021-05-07 20:54:12 +00:00
|
|
|
ta.lastKnownSignature = egm.Signature
|
2020-07-14 00:46:05 +00:00
|
|
|
} else {
|
|
|
|
|
log.Debugf("Server sent an unexpected EncryptedGroupMessage, closing the connection: %v", err)
|
2021-05-07 20:54:12 +00:00
|
|
|
ta.serverClosedHandler(ta.connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
ta.connection.Close()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
ta.serverSyncedHandler(ta.connection.Hostname())
|
2021-06-29 21:38:53 +00:00
|
|
|
ta.connection.SetCapability(groups.CwtchServerSyncedCapability)
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Replay posts a Replay Message to the server.
|
|
|
|
|
func (ta *TokenBoardClient) Replay() {
|
2021-05-07 20:54:12 +00:00
|
|
|
data, _ := json.Marshal(groups.Message{MessageType: groups.ReplayRequestMessage, ReplayRequest: &groups.ReplayRequest{LastCommit: ta.lastKnownSignature}})
|
2020-07-14 00:46:05 +00:00
|
|
|
ta.connection.Send(data)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// PurchaseTokens purchases the given number of tokens from the server (using the provided payment handler)
|
|
|
|
|
func (ta *TokenBoardClient) PurchaseTokens() {
|
|
|
|
|
ta.MakePayment()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Post sends a Post Request to the server
|
2021-05-10 23:37:20 +00:00
|
|
|
func (ta *TokenBoardClient) Post(ct []byte, sig []byte) (bool, int) {
|
2020-07-14 00:46:05 +00:00
|
|
|
egm := groups.EncryptedGroupMessage{Ciphertext: ct, Signature: sig}
|
2021-05-10 23:37:20 +00:00
|
|
|
token, numTokens, err := ta.NextToken(egm.ToBytes(), ta.connection.Hostname())
|
2020-07-14 00:46:05 +00:00
|
|
|
if err == nil {
|
|
|
|
|
data, _ := json.Marshal(groups.Message{MessageType: groups.PostRequestMessage, PostRequest: &groups.PostRequest{EGM: egm, Token: token}})
|
|
|
|
|
log.Debugf("Message Length: %s %v", data, len(data))
|
2022-01-24 22:02:13 +00:00
|
|
|
err := ta.connection.Send(data)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, numTokens
|
|
|
|
|
}
|
2021-05-10 23:37:20 +00:00
|
|
|
return true, numTokens
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
log.Debugf("No Valid Tokens: %v", err)
|
2021-05-10 23:37:20 +00:00
|
|
|
return false, numTokens
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// MakePayment uses the PoW based token protocol to obtain more tokens
|
2021-05-10 23:37:20 +00:00
|
|
|
func (ta *TokenBoardClient) MakePayment() error {
|
2021-10-26 23:17:14 +00:00
|
|
|
log.Debugf("Making a Payment")
|
2020-07-14 00:46:05 +00:00
|
|
|
id, sk := primitives.InitializeEphemeralIdentity()
|
2021-06-02 18:34:57 +00:00
|
|
|
client := new(tor.BaseOnionService)
|
2020-07-14 00:46:05 +00:00
|
|
|
client.Init(ta.acn, sk, &id)
|
2022-04-21 22:12:58 +00:00
|
|
|
defer client.Shutdown()
|
2020-07-14 00:46:05 +00:00
|
|
|
|
|
|
|
|
tokenApplication := new(applications.TokenApplication)
|
|
|
|
|
tokenApplication.TokenService = ta.tokenService
|
|
|
|
|
powTokenApp := new(applications.ApplicationChain).
|
|
|
|
|
ChainApplication(new(applications.ProofOfWorkApplication), applications.SuccessfulProofOfWorkCapability).
|
|
|
|
|
ChainApplication(tokenApplication, applications.HasTokensCapability)
|
2021-09-30 00:57:13 +00:00
|
|
|
|
2021-05-10 23:37:20 +00:00
|
|
|
log.Debugf("Waiting for successful PoW Auth...")
|
2021-09-30 00:57:13 +00:00
|
|
|
|
|
|
|
|
connected, err := client.Connect(ta.tokenServiceOnion, powTokenApp)
|
2021-11-17 23:59:52 +00:00
|
|
|
if connected && err == nil {
|
2021-09-30 00:57:13 +00:00
|
|
|
log.Debugf("Waiting for successful Token Acquisition...")
|
|
|
|
|
conn, err := client.WaitForCapabilityOrClose(ta.tokenServiceOnion, applications.HasTokensCapability)
|
|
|
|
|
if err == nil {
|
|
|
|
|
powtapp, ok := conn.App().(*applications.TokenApplication)
|
|
|
|
|
if ok {
|
|
|
|
|
// Update tokens...we need a lock here to prevent SpendToken from modifying the tokens
|
|
|
|
|
// during this process..
|
|
|
|
|
log.Debugf("Updating Tokens")
|
|
|
|
|
ta.tokenLock.Lock()
|
|
|
|
|
ta.tokens = append(ta.tokens, powtapp.Tokens...)
|
|
|
|
|
ta.tokenLock.Unlock()
|
|
|
|
|
log.Debugf("Transcript: %v", powtapp.Transcript().OutputTranscriptToAudit())
|
|
|
|
|
conn.Close()
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2021-10-26 23:17:14 +00:00
|
|
|
log.Errorf("invalid cast of powapp. this should never happen %v %v", powtapp, reflect.TypeOf(conn.App()))
|
2021-09-30 00:57:13 +00:00
|
|
|
return errors.New("invalid cast of powapp. this should never happen")
|
|
|
|
|
}
|
2022-04-20 20:10:07 +00:00
|
|
|
log.Debugf("could not connect to payment server..trying again: %v", err)
|
2021-09-30 00:57:13 +00:00
|
|
|
return ta.MakePayment()
|
|
|
|
|
} else if connected && err != nil {
|
|
|
|
|
log.Debugf("inexplicable error: %v", err)
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
2021-09-30 00:57:13 +00:00
|
|
|
log.Debugf("failed to make a connection. trying again...")
|
|
|
|
|
// it doesn't actually take that long to make a payment, so waiting a small amount of time should suffice
|
|
|
|
|
time.Sleep(time.Second)
|
|
|
|
|
return ta.MakePayment()
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// NextToken retrieves the next token
|
2021-05-10 23:37:20 +00:00
|
|
|
func (ta *TokenBoardClient) NextToken(data []byte, hostname string) (privacypass.SpentToken, int, error) {
|
|
|
|
|
// Taken the first new token, we need a lock here because tokens can be appended by MakePayment
|
|
|
|
|
// which could result in weird behaviour...
|
|
|
|
|
ta.tokenLock.Lock()
|
|
|
|
|
defer ta.tokenLock.Unlock()
|
2020-07-14 00:46:05 +00:00
|
|
|
if len(ta.tokens) == 0 {
|
2021-06-02 18:34:57 +00:00
|
|
|
return privacypass.SpentToken{}, len(ta.tokens), errors.New("no more tokens")
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
|
|
|
|
token := ta.tokens[0]
|
|
|
|
|
ta.tokens = ta.tokens[1:]
|
2021-05-10 23:37:20 +00:00
|
|
|
return token.SpendToken(append(data, hostname...)), len(ta.tokens), nil
|
2020-07-14 00:46:05 +00:00
|
|
|
}
|
