veilid/veilid-core/src/crypto/receipt.rs

219 lines
7.4 KiB
Rust
Raw Normal View History

2022-01-03 21:29:04 +00:00
#![allow(dead_code)]
2021-11-26 16:50:49 +00:00
#![allow(clippy::absurd_extreme_comparisons)]
2022-10-30 23:29:31 +00:00
use super::*;
2022-07-10 21:36:50 +00:00
use crate::*;
2021-11-22 16:28:30 +00:00
use core::convert::TryInto;
2023-02-08 02:44:50 +00:00
/// Out-of-band receipts are versioned along with envelope versions
2023-01-29 18:13:50 +00:00
///
/// These are the formats for the on-the-wire serialization performed by this module
///
/// #[repr(C, packed)]
/// struct ReceiptHeader {
2023-02-08 02:44:50 +00:00
/// // Size is at least 4 bytes. Depending on the version specified, the size may vary and should be case to the appropriate struct
/// magic: [u8; 3], // 0x00: 0x52 0x43 0x50 ("RCP")
/// version: u8, // 0x03: 0 = ReceiptV0
2023-01-29 18:13:50 +00:00
/// }
///
/// #[repr(C, packed)]
/// struct ReceiptV0 {
2023-02-08 02:44:50 +00:00
/// // Size is 66 bytes without extra data and signature, 130 with signature
/// magic: [u8; 3], // 0x00: 0x52 0x43 0x50 ("RCP")
/// version: u8, // 0x03: 0 = ReceiptV0
/// crypto_kind: [u8; 4], // 0x04: CryptoSystemVersion FOURCC code
/// size: u16, // 0x08: Total size of the receipt including the extra data and the signature. Maximum size is 1380 bytes.
/// nonce: [u8; 24], // 0x0A: Randomly chosen bytes that represent a unique receipt. Could be used to encrypt the extra data, but it's not required.
/// sender_id: [u8; 32], // 0x22: Node ID of the message source, which is the public key of the sender
/// extra_data: [u8; ??], // 0x42: Extra data is appended (arbitrary extra data, not encrypted by receipt itself, maximum size is 1250 bytes)
/// signature: [u8; 64], // 0x?? (end-0x40): Signature of the entire receipt including header and extra data is appended to the packet
2023-01-29 18:13:50 +00:00
/// }
2021-11-22 16:28:30 +00:00
2023-02-08 02:44:50 +00:00
pub const MAX_RECEIPT_SIZE: usize = 1380;
pub const MAX_EXTRA_DATA_SIZE: usize = MAX_RECEIPT_SIZE - MIN_RECEIPT_SIZE; // 1250
pub const MIN_RECEIPT_SIZE: usize = 130;
pub const RECEIPT_MAGIC: &[u8; 3] = b"RCP";
2022-05-26 00:56:13 +00:00
2021-11-22 16:28:30 +00:00
#[derive(Debug, Clone, PartialEq, Eq, Default)]
pub struct Receipt {
version: u8,
2023-02-08 02:44:50 +00:00
crypto_kind: CryptoKind,
nonce: Nonce,
sender_id: PublicKey,
2021-11-22 16:28:30 +00:00
extra_data: Vec<u8>,
}
impl Receipt {
pub fn try_new<D: AsRef<[u8]>>(
version: u8,
2023-02-08 02:44:50 +00:00
crypto_kind: CryptoKind,
nonce: Nonce,
sender_id: PublicKey,
2021-11-22 16:28:30 +00:00
extra_data: D,
2022-07-10 21:36:50 +00:00
) -> Result<Self, VeilidAPIError> {
2023-02-08 02:44:50 +00:00
assert!(version >= MIN_ENVELOPE_VERSION);
assert!(version <= MAX_ENVELOPE_VERSION);
assert!(VALID_CRYPTO_KINDS.contains(&crypto_kind));
2021-11-22 16:28:30 +00:00
if extra_data.as_ref().len() > MAX_EXTRA_DATA_SIZE {
2022-11-26 19:16:02 +00:00
apibail_parse_error!(
2022-07-10 21:36:50 +00:00
"extra data too large for receipt",
2022-11-26 19:16:02 +00:00
extra_data.as_ref().len()
);
2021-11-22 16:28:30 +00:00
}
Ok(Self {
2021-11-26 16:50:49 +00:00
version,
2023-02-08 02:44:50 +00:00
crypto_kind,
2021-11-26 16:50:49 +00:00
nonce,
sender_id,
2021-11-22 16:28:30 +00:00
extra_data: Vec::from(extra_data.as_ref()),
})
}
2023-02-08 02:44:50 +00:00
pub fn from_signed_data(crypto: Crypto, data: &[u8]) -> Result<Receipt, VeilidAPIError> {
2021-11-22 16:28:30 +00:00
// Ensure we are at least the length of the envelope
if data.len() < MIN_RECEIPT_SIZE {
2022-11-26 19:16:02 +00:00
apibail_parse_error!("receipt too small", data.len());
2021-11-22 16:28:30 +00:00
}
// Verify magic number
2023-02-08 02:44:50 +00:00
let magic: [u8; 3] = data[0x00..0x03]
2022-07-10 21:36:50 +00:00
.try_into()
.map_err(VeilidAPIError::internal)?;
2021-11-22 16:28:30 +00:00
if magic != *RECEIPT_MAGIC {
2022-11-26 19:16:02 +00:00
apibail_generic!("bad magic number");
2021-11-22 16:28:30 +00:00
}
// Check version
2023-02-08 02:44:50 +00:00
let version = data[0x03];
if version > MAX_ENVELOPE_VERSION || version < MIN_ENVELOPE_VERSION {
apibail_parse_error!("unsupported envelope version", version);
2021-11-22 16:28:30 +00:00
}
2023-02-08 02:44:50 +00:00
// Check crypto kind
2023-02-08 21:50:07 +00:00
let crypto_kind = FourCC(
2023-02-08 02:44:50 +00:00
data[0x04..0x08]
.try_into()
.map_err(VeilidAPIError::internal)?,
);
let Some(vcrypto) = crypto.get(crypto_kind) else {
apibail_parse_error!("unsupported crypto kind", crypto_kind);
};
2021-11-22 16:28:30 +00:00
// Get size and ensure it matches the size of the envelope and is less than the maximum message size
2022-07-10 21:36:50 +00:00
let size: u16 = u16::from_le_bytes(
2023-02-08 02:44:50 +00:00
data[0x08..0x0A]
2022-07-10 21:36:50 +00:00
.try_into()
.map_err(VeilidAPIError::internal)?,
);
2021-11-22 16:28:30 +00:00
if (size as usize) > MAX_RECEIPT_SIZE {
2022-11-26 19:16:02 +00:00
apibail_parse_error!("receipt size is too large", size);
2021-11-22 16:28:30 +00:00
}
if (size as usize) != data.len() {
2022-11-26 19:16:02 +00:00
apibail_parse_error!(
2022-07-10 21:36:50 +00:00
"size doesn't match receipt size",
2022-11-26 19:16:02 +00:00
format!("size={} data.len()={}", size, data.len())
);
2021-11-22 16:28:30 +00:00
}
// Get sender id
2023-02-08 02:44:50 +00:00
let sender_id = PublicKey::new(
data[0x22..0x42]
2022-07-10 21:36:50 +00:00
.try_into()
.map_err(VeilidAPIError::internal)?,
);
2021-11-26 16:50:49 +00:00
2021-11-22 16:28:30 +00:00
// Get signature
2023-02-08 02:44:50 +00:00
let signature = Signature::new(
2022-07-10 21:36:50 +00:00
data[(data.len() - 64)..]
.try_into()
.map_err(VeilidAPIError::internal)?,
);
2021-11-22 16:28:30 +00:00
// Validate signature
2023-02-08 02:44:50 +00:00
vcrypto
.verify(&sender_id, &data[0..(data.len() - 64)], &signature)
2022-07-10 21:36:50 +00:00
.map_err(VeilidAPIError::generic)?;
2021-11-22 16:28:30 +00:00
// Get nonce
2023-02-08 02:44:50 +00:00
let nonce: Nonce = Nonce::new(
data[0x0A..0x22]
.try_into()
.map_err(VeilidAPIError::internal)?,
);
2021-11-22 16:28:30 +00:00
// Get extra data and signature
2023-02-08 02:44:50 +00:00
let extra_data: Vec<u8> = Vec::from(&data[0x42..(data.len() - 64)]);
2021-11-22 16:28:30 +00:00
// Return receipt
Ok(Self {
2021-11-26 16:50:49 +00:00
version,
2023-02-08 02:44:50 +00:00
crypto_kind,
2021-11-26 16:50:49 +00:00
nonce,
sender_id,
extra_data,
2021-11-22 16:28:30 +00:00
})
}
2023-02-08 02:44:50 +00:00
pub fn to_signed_data(
&self,
crypto: Crypto,
secret: &SecretKey,
) -> Result<Vec<u8>, VeilidAPIError> {
2021-11-22 16:28:30 +00:00
// Ensure extra data isn't too long
let receipt_size: usize = self.extra_data.len() + MIN_RECEIPT_SIZE;
if receipt_size > MAX_RECEIPT_SIZE {
2022-11-26 19:16:02 +00:00
apibail_parse_error!("receipt too large", receipt_size);
2021-11-22 16:28:30 +00:00
}
2023-02-08 02:44:50 +00:00
// Get crypto version
let vcrypto = crypto
.get(self.crypto_kind)
.expect("need to ensure only valid crypto kinds here");
2021-11-26 16:50:49 +00:00
let mut data: Vec<u8> = vec![0u8; receipt_size];
2021-11-22 16:28:30 +00:00
// Write magic
2023-02-08 02:44:50 +00:00
data[0x00..0x03].copy_from_slice(RECEIPT_MAGIC);
2021-11-22 16:28:30 +00:00
// Write version
2023-02-08 02:44:50 +00:00
data[0x03] = self.version;
// Write crypto kind
data[0x04..0x08].copy_from_slice(&self.crypto_kind.0);
2021-11-22 16:28:30 +00:00
// Write size
2023-02-08 02:44:50 +00:00
data[0x08..0x0A].copy_from_slice(&(receipt_size as u16).to_le_bytes());
2021-11-22 16:28:30 +00:00
// Write nonce
2023-02-08 02:44:50 +00:00
data[0x0A..0x22].copy_from_slice(&self.nonce.bytes);
2021-11-22 16:28:30 +00:00
// Write sender node id
2023-02-08 02:44:50 +00:00
data[0x22..0x42].copy_from_slice(&self.sender_id.bytes);
2021-11-22 16:28:30 +00:00
// Write extra data
2021-11-26 16:50:49 +00:00
if !self.extra_data.is_empty() {
2023-02-08 02:44:50 +00:00
data[0x42..(receipt_size - 64)].copy_from_slice(self.extra_data.as_slice());
2021-11-22 16:28:30 +00:00
}
// Sign the receipt
2023-02-08 02:44:50 +00:00
let signature = vcrypto
.sign(&self.sender_id, secret, &data[0..(receipt_size - 64)])
2022-07-10 21:36:50 +00:00
.map_err(VeilidAPIError::generic)?;
2021-11-22 16:28:30 +00:00
// Append the signature
data[(receipt_size - 64)..].copy_from_slice(&signature.bytes);
Ok(data)
}
pub fn get_version(&self) -> u8 {
self.version
}
2023-02-08 02:44:50 +00:00
pub fn get_crypto_kind(&self) -> CryptoKind {
self.crypto_kind
}
pub fn get_nonce(&self) -> Nonce {
2021-11-22 16:28:30 +00:00
self.nonce
}
2023-02-08 02:44:50 +00:00
pub fn get_sender_id(&self) -> PublicKey {
2021-11-22 16:28:30 +00:00
self.sender_id
}
pub fn get_extra_data(&self) -> &[u8] {
&self.extra_data
}
}