// process an incoming handshake link_t link_receive_handshake(link_t link, lob_t inner) { uint32_t out, at, err; uint8_t csid = 0; lob_t outer = lob_linked(inner); if(!link || !inner || !outer) return LOG("bad args"); // inner/link must be validated by caller already, we just load if missing if(!link->key) { util_unhex(lob_get(inner, "csid"), 2, &csid); if(!link_load(link, csid, inner)) { lob_free(inner); return LOG("load key failed for %s %u %s",hashname_short(link->id),csid,util_hex(inner->body,inner->body_len,NULL)); } } if((err = e3x_exchange_verify(link->x,outer))) { lob_free(inner); return LOG("handshake verification fail: %d",err); } out = e3x_exchange_out(link->x,0); at = lob_get_uint(inner,"at"); link_t ready = link_up(link); // if bad at, always send current handshake if(e3x_exchange_in(link->x, at) < out) { LOG("old handshake: %s (%d,%d,%d)",lob_json(inner),at,out); link_sync(link); lob_free(inner); return link; } // try to sync ephemeral key if(!e3x_exchange_sync(link->x,outer)) { lob_free(inner); return LOG("sync failed"); } // we may need to re-sync if(out != e3x_exchange_out(link->x,0)) link_sync(link); // notify of ready state change if(!ready && link_up(link)) { LOG("link ready"); mesh_link(link->mesh, link); } link->handshake = lob_free(link->handshake); link->handshake = inner; return link; }
// trigger a new exchange sync link_t link_resync(link_t link) { if(!link) return LOG("bad args"); if(!link->x) return LOG("no exchange"); // force a higher at, triggers all to sync e3x_exchange_out(link->x,e3x_exchange_out(link->x,0)+1); return link_sync(link); }
// process an incoming handshake link_t link_receive_handshake(link_t link, lob_t inner, pipe_t pipe) { link_t ready; uint32_t out, err; seen_t seen; uint8_t csid = 0; char *hexid; lob_t attached, outer = lob_linked(inner); if(!link || !inner || !outer) return LOG("bad args"); hexid = lob_get(inner, "csid"); if(!lob_get(link->mesh->keys, hexid)) return LOG("unsupported csid %s",hexid); util_unhex(hexid, 2, &csid); attached = lob_parse(inner->body, inner->body_len); if(!link->key && link_key(link->mesh, attached, csid) != link) return LOG("invalid/mismatch link handshake"); if((err = e3x_exchange_verify(link->x,outer))) return LOG("handshake verification fail: %d",err); out = e3x_exchange_out(link->x,0); ready = link_up(link); // if bad at, always send current handshake if(e3x_exchange_in(link->x, lob_get_uint(inner,"at")) < out) { LOG("old/bad at: %s (%d,%d,%d)",lob_json(inner),lob_get_int(inner,"at"),e3x_exchange_in(link->x,0),e3x_exchange_out(link->x,0)); // just reset pipe seen and call link_sync to resend handshake for(seen = link->pipes;pipe && seen;seen = seen->next) if(seen->pipe == pipe) seen->at = 0; lob_free(link_sync(link)); return NULL; } // trust/add this pipe if(pipe) link_pipe(link,pipe); // try to sync ephemeral key if(!e3x_exchange_sync(link->x,outer)) return LOG("sync failed"); // we may need to re-sync if(out != e3x_exchange_out(link->x,0)) lob_free(link_sync(link)); // notify of ready state change if(!ready && link_up(link)) { LOG("link ready"); mesh_link(link->mesh, link); } return link; }
// is the link ready/available link_t link_up(link_t link) { if(!link) return NULL; if(!link->x) return NULL; if(!e3x_exchange_out(link->x,0)) return NULL; if(!e3x_exchange_in(link->x,0)) return NULL; return link; }
int main(int argc, char **argv) { mesh_t meshA = mesh_new(); fail_unless(meshA); lob_t secretsA = mesh_generate(meshA); fail_unless(secretsA); mesh_t meshB = mesh_new(); fail_unless(meshB); lob_t secretsB = mesh_generate(meshB); fail_unless(secretsB); net_tcp4_t netA = net_tcp4_new(meshA, NULL); fail_unless(netA); fail_unless(netA->port > 0); fail_unless(netA->path); LOG("netA %.*s",netA->path->head_len,netA->path->head); net_tcp4_t netB = net_tcp4_new(meshB, NULL); fail_unless(netB); fail_unless(netB->port > 0); LOG("netB %.*s",netB->path->head_len,netB->path->head); link_t linkAB = link_keys(meshA, meshB->keys); link_t linkBA = link_keys(meshB, meshA->keys); fail_unless(linkAB); fail_unless(linkBA); fail_unless(link_path(linkAB,netB->path)); fail_unless(link_path(linkBA,netA->path)); link_sync(linkAB); // let tcp go back and forth enough, need a better way to do this int loop; for(loop = 10; loop; loop--) { net_tcp4_loop(netB); net_tcp4_loop(netA); } fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0)); fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0)); return 0; }
int main(int argc, char **argv) { mesh_t meshA = mesh_new(3); fail_unless(meshA); lob_t secretsA = mesh_generate(meshA); fail_unless(secretsA); mesh_t meshB = mesh_new(3); fail_unless(meshB); lob_t secretsB = mesh_generate(meshB); fail_unless(secretsB); net_serial_t netA = net_serial_new(meshA, NULL); fail_unless(netA); pipe_t pAB = net_serial_add(netA, "sAB", readerA, writerA, 64); fail_unless(pAB); net_serial_t netB = net_serial_new(meshB, NULL); fail_unless(netB); pipe_t pBA = net_serial_add(netB, "sBA", readerB, writerB, 64); fail_unless(pBA); link_t linkAB = link_pipe(link_keys(meshA, meshB->keys), pAB); link_t linkBA = link_pipe(link_keys(meshB, meshA->keys), pBA); fail_unless(linkAB); fail_unless(linkBA); link_sync(linkAB); // let serial go go go int loop; for(loop = 1000; loop; loop--) { net_serial_loop(netB); net_serial_loop(netA); } fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0)); fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0)); return 0; }
int main(int argc, char **argv) { mesh_t meshA = mesh_new(3); fail_unless(meshA); lob_t secretsA = mesh_generate(meshA); fail_unless(secretsA); mesh_t meshB = mesh_new(3); fail_unless(meshB); lob_t secretsB = mesh_generate(meshB); fail_unless(secretsB); net_udp4_t netA = net_udp4_new(meshA, NULL); fail_unless(netA); fail_unless(netA->port > 0); fail_unless(netA->path); fail_unless(lob_match(meshA->paths,"type","udp4")); LOG("netA %.*s",netA->path->head_len,netA->path->head); net_udp4_t netB = net_udp4_new(meshB, NULL); fail_unless(netB); fail_unless(netB->port > 0); LOG("netB %.*s",netB->path->head_len,netB->path->head); link_t linkAB = link_keys(meshA, meshB->keys); link_t linkBA = link_keys(meshB, meshA->keys); fail_unless(linkAB); fail_unless(linkBA); fail_unless(link_path(linkAB,netB->path)); fail_unless(link_path(linkBA,netA->path)); link_sync(linkAB); net_udp4_receive(netB); fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0)); net_udp4_receive(netA); fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0)); return 0; }
// load in the key to existing link link_t link_load(link_t link, uint8_t csid, lob_t key) { char hex[3]; lob_t copy; if(!link || !csid || !key) return LOG("bad args"); if(link->x) { link->csid = link->x->csid; // repair in case mesh_unlink was called, any better place? return link; } LOG("adding %x key to link %s",csid,hashname_short(link->id)); // key must be bin if(key->body_len) { copy = lob_new(); lob_body(copy,key->body,key->body_len); }else{ util_hex(&csid,1,hex); copy = lob_get_base32(key,hex); } link->x = e3x_exchange_new(link->mesh->self, csid, copy); if(!link->x) { LOG("invalid %x key %s %s",csid,util_hex(copy->body,copy->body_len,NULL),lob_json(key)); lob_free(copy); return NULL; } link->csid = csid; link->key = copy; e3x_exchange_out(link->x, util_sys_seconds()); LOG("new exchange session to %s",hashname_short(link->id)); return link; }
// make sure all pipes have the current handshake lob_t link_sync(link_t link) { uint32_t at; seen_t seen; lob_t handshakes = NULL, hs = NULL; if(!link) return LOG("bad args"); if(!link->x) return LOG("no exchange"); at = e3x_exchange_out(link->x,0); LOG("link sync at %d",at); for(seen = link->pipes;seen;seen = seen->next) { if(!seen->pipe || !seen->pipe->send || seen->at == at) continue; // only create if we have to if(!handshakes) handshakes = link_handshakes(link); seen->at = at; for(hs = handshakes; hs; hs = lob_linked(hs)) seen->pipe->send(seen->pipe, lob_copy(hs), link); } // caller can re-use and must free return handshakes; }
// load in the key to existing link link_t link_load(link_t link, uint8_t csid, lob_t key) { char hex[3]; lob_t copy; if(!link || !csid || !key) return LOG("bad args"); if(link->x) return link; LOG("adding %x key to link %s",csid,link->id->hashname); // key must be bin if(key->body_len) { copy = lob_copy(key); }else{ util_hex(&csid,1,hex); copy = lob_get_base32(key,hex); } link->x = e3x_exchange_new(link->mesh->self, csid, copy); if(!link->x) { lob_free(copy); return LOG("invalid %x key %d %s",csid,key->body_len,lob_json(key)); } link->csid = csid; link->key = copy; // route packets to this token util_hex(e3x_exchange_token(link->x),16,link->token); xht_set(link->mesh->index,link->token,link); e3x_exchange_out(link->x, util_sys_seconds()); LOG("new session token %s to %s",link->token,link->id->hashname); return link; }