// process an incoming handshake
link_t link_receive_handshake(link_t link, lob_t inner)
{
uint32_t out, at, err;
uint8_t csid = 0;
lob_t outer = lob_linked(inner);
if(!link || !inner || !outer) return LOG("bad args");
// inner/link must be validated by caller already, we just load if missing
if(!link->key)
{
util_unhex(lob_get(inner, "csid"), 2, &csid);
if(!link_load(link, csid, inner))
{
lob_free(inner);
return LOG("load key failed for %s %u %s",hashname_short(link->id),csid,util_hex(inner->body,inner->body_len,NULL));
}
}
if((err = e3x_exchange_verify(link->x,outer)))
{
lob_free(inner);
return LOG("handshake verification fail: %d",err);
}
out = e3x_exchange_out(link->x,0);
at = lob_get_uint(inner,"at");
link_t ready = link_up(link);
// if bad at, always send current handshake
if(e3x_exchange_in(link->x, at) < out)
{
LOG("old handshake: %s (%d,%d,%d)",lob_json(inner),at,out);
link_sync(link);
lob_free(inner);
return link;
}
// try to sync ephemeral key
if(!e3x_exchange_sync(link->x,outer))
{
lob_free(inner);
return LOG("sync failed");
}
// we may need to re-sync
if(out != e3x_exchange_out(link->x,0)) link_sync(link);
// notify of ready state change
if(!ready && link_up(link))
{
LOG("link ready");
mesh_link(link->mesh, link);
}
link->handshake = lob_free(link->handshake);
link->handshake = inner;
return link;
}
// trigger a new exchange sync
link_t link_resync(link_t link)
{
if(!link) return LOG("bad args");
if(!link->x) return LOG("no exchange");
// force a higher at, triggers all to sync
e3x_exchange_out(link->x,e3x_exchange_out(link->x,0)+1);
return link_sync(link);
}
// process an incoming handshake
link_t link_receive_handshake(link_t link, lob_t inner, pipe_t pipe)
{
link_t ready;
uint32_t out, err;
seen_t seen;
uint8_t csid = 0;
char *hexid;
lob_t attached, outer = lob_linked(inner);
if(!link || !inner || !outer) return LOG("bad args");
hexid = lob_get(inner, "csid");
if(!lob_get(link->mesh->keys, hexid)) return LOG("unsupported csid %s",hexid);
util_unhex(hexid, 2, &csid);
attached = lob_parse(inner->body, inner->body_len);
if(!link->key && link_key(link->mesh, attached, csid) != link) return LOG("invalid/mismatch link handshake");
if((err = e3x_exchange_verify(link->x,outer))) return LOG("handshake verification fail: %d",err);
out = e3x_exchange_out(link->x,0);
ready = link_up(link);
// if bad at, always send current handshake
if(e3x_exchange_in(link->x, lob_get_uint(inner,"at")) < out)
{
LOG("old/bad at: %s (%d,%d,%d)",lob_json(inner),lob_get_int(inner,"at"),e3x_exchange_in(link->x,0),e3x_exchange_out(link->x,0));
// just reset pipe seen and call link_sync to resend handshake
for(seen = link->pipes;pipe && seen;seen = seen->next) if(seen->pipe == pipe) seen->at = 0;
lob_free(link_sync(link));
return NULL;
}
// trust/add this pipe
if(pipe) link_pipe(link,pipe);
// try to sync ephemeral key
if(!e3x_exchange_sync(link->x,outer)) return LOG("sync failed");
// we may need to re-sync
if(out != e3x_exchange_out(link->x,0)) lob_free(link_sync(link));
// notify of ready state change
if(!ready && link_up(link))
{
LOG("link ready");
mesh_link(link->mesh, link);
}
return link;
}
// is the link ready/available
link_t link_up(link_t link)
{
if(!link) return NULL;
if(!link->x) return NULL;
if(!e3x_exchange_out(link->x,0)) return NULL;
if(!e3x_exchange_in(link->x,0)) return NULL;
return link;
}
int main(int argc, char **argv)
{
mesh_t meshA = mesh_new();
fail_unless(meshA);
lob_t secretsA = mesh_generate(meshA);
fail_unless(secretsA);
mesh_t meshB = mesh_new();
fail_unless(meshB);
lob_t secretsB = mesh_generate(meshB);
fail_unless(secretsB);
net_tcp4_t netA = net_tcp4_new(meshA, NULL);
fail_unless(netA);
fail_unless(netA->port > 0);
fail_unless(netA->path);
LOG("netA %.*s",netA->path->head_len,netA->path->head);
net_tcp4_t netB = net_tcp4_new(meshB, NULL);
fail_unless(netB);
fail_unless(netB->port > 0);
LOG("netB %.*s",netB->path->head_len,netB->path->head);
link_t linkAB = link_keys(meshA, meshB->keys);
link_t linkBA = link_keys(meshB, meshA->keys);
fail_unless(linkAB);
fail_unless(linkBA);
fail_unless(link_path(linkAB,netB->path));
fail_unless(link_path(linkBA,netA->path));
link_sync(linkAB);
// let tcp go back and forth enough, need a better way to do this
int loop;
for(loop = 10; loop; loop--)
{
net_tcp4_loop(netB);
net_tcp4_loop(netA);
}
fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0));
fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0));
return 0;
}
int main(int argc, char **argv)
{
mesh_t meshA = mesh_new(3);
fail_unless(meshA);
lob_t secretsA = mesh_generate(meshA);
fail_unless(secretsA);
mesh_t meshB = mesh_new(3);
fail_unless(meshB);
lob_t secretsB = mesh_generate(meshB);
fail_unless(secretsB);
net_serial_t netA = net_serial_new(meshA, NULL);
fail_unless(netA);
pipe_t pAB = net_serial_add(netA, "sAB", readerA, writerA, 64);
fail_unless(pAB);
net_serial_t netB = net_serial_new(meshB, NULL);
fail_unless(netB);
pipe_t pBA = net_serial_add(netB, "sBA", readerB, writerB, 64);
fail_unless(pBA);
link_t linkAB = link_pipe(link_keys(meshA, meshB->keys), pAB);
link_t linkBA = link_pipe(link_keys(meshB, meshA->keys), pBA);
fail_unless(linkAB);
fail_unless(linkBA);
link_sync(linkAB);
// let serial go go go
int loop;
for(loop = 1000; loop; loop--)
{
net_serial_loop(netB);
net_serial_loop(netA);
}
fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0));
fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0));
return 0;
}
int main(int argc, char **argv)
{
mesh_t meshA = mesh_new(3);
fail_unless(meshA);
lob_t secretsA = mesh_generate(meshA);
fail_unless(secretsA);
mesh_t meshB = mesh_new(3);
fail_unless(meshB);
lob_t secretsB = mesh_generate(meshB);
fail_unless(secretsB);
net_udp4_t netA = net_udp4_new(meshA, NULL);
fail_unless(netA);
fail_unless(netA->port > 0);
fail_unless(netA->path);
fail_unless(lob_match(meshA->paths,"type","udp4"));
LOG("netA %.*s",netA->path->head_len,netA->path->head);
net_udp4_t netB = net_udp4_new(meshB, NULL);
fail_unless(netB);
fail_unless(netB->port > 0);
LOG("netB %.*s",netB->path->head_len,netB->path->head);
link_t linkAB = link_keys(meshA, meshB->keys);
link_t linkBA = link_keys(meshB, meshA->keys);
fail_unless(linkAB);
fail_unless(linkBA);
fail_unless(link_path(linkAB,netB->path));
fail_unless(link_path(linkBA,netA->path));
link_sync(linkAB);
net_udp4_receive(netB);
fail_unless(e3x_exchange_out(linkBA->x,0) >= e3x_exchange_out(linkAB->x,0));
net_udp4_receive(netA);
fail_unless(e3x_exchange_out(linkBA->x,0) == e3x_exchange_out(linkAB->x,0));
return 0;
}
// load in the key to existing link
link_t link_load(link_t link, uint8_t csid, lob_t key)
{
char hex[3];
lob_t copy;
if(!link || !csid || !key) return LOG("bad args");
if(link->x)
{
link->csid = link->x->csid; // repair in case mesh_unlink was called, any better place?
return link;
}
LOG("adding %x key to link %s",csid,hashname_short(link->id));
// key must be bin
if(key->body_len)
{
copy = lob_new();
lob_body(copy,key->body,key->body_len);
}else{
util_hex(&csid,1,hex);
copy = lob_get_base32(key,hex);
}
link->x = e3x_exchange_new(link->mesh->self, csid, copy);
if(!link->x)
{
LOG("invalid %x key %s %s",csid,util_hex(copy->body,copy->body_len,NULL),lob_json(key));
lob_free(copy);
return NULL;
}
link->csid = csid;
link->key = copy;
e3x_exchange_out(link->x, util_sys_seconds());
LOG("new exchange session to %s",hashname_short(link->id));
return link;
}
// make sure all pipes have the current handshake
lob_t link_sync(link_t link)
{
uint32_t at;
seen_t seen;
lob_t handshakes = NULL, hs = NULL;
if(!link) return LOG("bad args");
if(!link->x) return LOG("no exchange");
at = e3x_exchange_out(link->x,0);
LOG("link sync at %d",at);
for(seen = link->pipes;seen;seen = seen->next)
{
if(!seen->pipe || !seen->pipe->send || seen->at == at) continue;
// only create if we have to
if(!handshakes) handshakes = link_handshakes(link);
seen->at = at;
for(hs = handshakes; hs; hs = lob_linked(hs)) seen->pipe->send(seen->pipe, lob_copy(hs), link);
}
// caller can re-use and must free
return handshakes;
}
// load in the key to existing link
link_t link_load(link_t link, uint8_t csid, lob_t key)
{
char hex[3];
lob_t copy;
if(!link || !csid || !key) return LOG("bad args");
if(link->x) return link;
LOG("adding %x key to link %s",csid,link->id->hashname);
// key must be bin
if(key->body_len)
{
copy = lob_copy(key);
}else{
util_hex(&csid,1,hex);
copy = lob_get_base32(key,hex);
}
link->x = e3x_exchange_new(link->mesh->self, csid, copy);
if(!link->x)
{
lob_free(copy);
return LOG("invalid %x key %d %s",csid,key->body_len,lob_json(key));
}
link->csid = csid;
link->key = copy;
// route packets to this token
util_hex(e3x_exchange_token(link->x),16,link->token);
xht_set(link->mesh->index,link->token,link);
e3x_exchange_out(link->x, util_sys_seconds());
LOG("new session token %s to %s",link->token,link->id->hashname);
return link;
}
