checkpoint

This commit is contained in:
John Smith 2023-02-20 20:37:52 -05:00
parent 05be3099c8
commit ae991334d3
25 changed files with 357 additions and 163 deletions

View File

@ -288,7 +288,7 @@ struct OperationReturnReceipt @0xeb0fb5b5a9160eeb {
} }
struct OperationFindNodeQ @0xfdef788fe9623bcd { struct OperationFindNodeQ @0xfdef788fe9623bcd {
nodeId @0 :TypedKey; # node id to locate nodeId @0 :TypedKey; # node id to locate
} }
struct OperationFindNodeA @0xa84cf2fb40c77089 { struct OperationFindNodeA @0xa84cf2fb40c77089 {

View File

@ -217,6 +217,14 @@ macro_rules! byte_array_type {
} }
} }
impl FromStr for $name {
type Err = VeilidAPIError;
fn from_str(s: &str) -> Result<Self, Self::Err> {
$name::try_from(s)
}
}
impl TryFrom<String> for $name { impl TryFrom<String> for $name {
type Error = VeilidAPIError; type Error = VeilidAPIError;
fn try_from(value: String) -> Result<Self, Self::Error> { fn try_from(value: String) -> Result<Self, Self::Error> {

View File

@ -634,7 +634,7 @@ impl NetworkManager {
pub async fn handle_private_receipt<R: AsRef<[u8]>>( pub async fn handle_private_receipt<R: AsRef<[u8]>>(
&self, &self,
receipt_data: R, receipt_data: R,
private_route: TypedKey, private_route: PublicKey,
) -> NetworkResult<()> { ) -> NetworkResult<()> {
let receipt_manager = self.receipt_manager(); let receipt_manager = self.receipt_manager();

View File

@ -11,7 +11,7 @@ pub enum ReceiptEvent {
ReturnedOutOfBand, ReturnedOutOfBand,
ReturnedInBand { inbound_noderef: NodeRef }, ReturnedInBand { inbound_noderef: NodeRef },
ReturnedSafety, ReturnedSafety,
ReturnedPrivate { private_route: TypedKey }, ReturnedPrivate { private_route: PublicKey },
Expired, Expired,
Cancelled, Cancelled,
} }
@ -21,7 +21,7 @@ pub enum ReceiptReturned {
OutOfBand, OutOfBand,
InBand { inbound_noderef: NodeRef }, InBand { inbound_noderef: NodeRef },
Safety, Safety,
Private { private_route: TypedKey }, Private { private_route: PublicKey },
} }
pub trait ReceiptCallback: Send + 'static { pub trait ReceiptCallback: Send + 'static {

View File

@ -891,11 +891,20 @@ impl RoutingTable {
} }
#[instrument(level = "trace", skip(self), ret)] #[instrument(level = "trace", skip(self), ret)]
pub fn register_find_node_answer(&self, peers: Vec<PeerInfo>) -> Vec<NodeRef> { pub fn register_find_node_answer(
// register nodes we'd found &self,
crypto_kind: CryptoKind,
peers: Vec<PeerInfo>,
) -> Vec<NodeRef> {
// Register nodes we'd found
let mut out = Vec::<NodeRef>::with_capacity(peers.len()); let mut out = Vec::<NodeRef>::with_capacity(peers.len());
for p in peers { for p in peers {
// register the node if it's new // Ensure we're getting back nodes we asked for
if !p.node_ids.kinds().contains(&crypto_kind) {
continue;
}
// Register the node if it's new
if let Some(nr) = if let Some(nr) =
self.register_node_with_peer_info(RoutingDomain::PublicInternet, p, false) self.register_node_with_peer_info(RoutingDomain::PublicInternet, p, false)
{ {
@ -922,29 +931,41 @@ impl RoutingTable {
// register nodes we'd found // register nodes we'd found
Ok(NetworkResult::value( Ok(NetworkResult::value(
self.register_find_node_answer(res.answer), self.register_find_node_answer(node_id.kind, res.answer),
)) ))
} }
/// Ask a remote node to list the nodes it has around the current node
#[instrument(level = "trace", skip(self), ret, err)] #[instrument(level = "trace", skip(self), ret, err)]
pub async fn find_self(&self, node_ref: NodeRef) -> EyreResult<NetworkResult<Vec<NodeRef>>> { pub async fn find_self(
let self_node_id = self.node_id(); &self,
crypto_kind: CryptoKind,
node_ref: NodeRef,
) -> EyreResult<NetworkResult<Vec<NodeRef>>> {
let self_node_id = self.node_id(crypto_kind);
self.find_node(node_ref, self_node_id).await self.find_node(node_ref, self_node_id).await
} }
/// Ask a remote node to list the nodes it has around itself
#[instrument(level = "trace", skip(self), ret, err)] #[instrument(level = "trace", skip(self), ret, err)]
pub async fn find_target(&self, node_ref: NodeRef) -> EyreResult<NetworkResult<Vec<NodeRef>>> { pub async fn find_target(
let target_node_id = node_ref.node_id(); &self,
crypto_kind: CryptoKind,
node_ref: NodeRef,
) -> EyreResult<NetworkResult<Vec<NodeRef>>> {
let Some(target_node_id) = node_ref.node_ids().get(crypto_kind) else {
bail!("no target node ids for this crypto kind");
};
self.find_node(node_ref, target_node_id).await self.find_node(node_ref, target_node_id).await
} }
#[instrument(level = "trace", skip(self))] #[instrument(level = "trace", skip(self))]
pub async fn reverse_find_node(&self, node_ref: NodeRef, wide: bool) { pub async fn reverse_find_node(&self, crypto_kind: CryptoKind, node_ref: NodeRef, wide: bool) {
// Ask bootstrap node to 'find' our own node so we can get some more nodes near ourselves // Ask node to 'find node' on own node so we can get some more nodes near ourselves
// and then contact those nodes to inform -them- that we exist // and then contact those nodes to inform -them- that we exist
// Ask bootstrap server for nodes closest to our own node // Ask node for nodes closest to our own node
let closest_nodes = network_result_value_or_log!(match self.find_self(node_ref.clone()).await { let closest_nodes = network_result_value_or_log!(match self.find_self(crypto_kind, node_ref.clone()).await {
Err(e) => { Err(e) => {
log_rtab!(error log_rtab!(error
"find_self failed for {:?}: {:?}", "find_self failed for {:?}: {:?}",
@ -960,7 +981,7 @@ impl RoutingTable {
// Ask each node near us to find us as well // Ask each node near us to find us as well
if wide { if wide {
for closest_nr in closest_nodes { for closest_nr in closest_nodes {
network_result_value_or_log!(match self.find_self(closest_nr.clone()).await { network_result_value_or_log!(match self.find_self(crypto_kind, closest_nr.clone()).await {
Err(e) => { Err(e) => {
log_rtab!(error log_rtab!(error
"find_self failed for {:?}: {:?}", "find_self failed for {:?}: {:?}",

View File

@ -168,7 +168,7 @@ pub struct RouteSpecDetail {
/// Secret key /// Secret key
#[with(Skip)] #[with(Skip)]
secret_key: SecretKey, secret_key: SecretKey,
/// Route hops /// Route hops (node id keys)
hops: Vec<PublicKey>, hops: Vec<PublicKey>,
/// Route noderefs /// Route noderefs
#[with(Skip)] #[with(Skip)]
@ -444,7 +444,7 @@ impl RouteSpecStore {
let mut dead_keys = Vec::new(); let mut dead_keys = Vec::new();
for (k, rsd) in &mut content.details { for (k, rsd) in &mut content.details {
for h in &rsd.hops { for h in &rsd.hops {
let Some(nr) = routing_table.lookup_node_ref(*h) else { let Some(nr) = routing_table.lookup_node_ref(TypedKey::new(rsd.crypto_kind, *h)) else {
dead_keys.push(*k); dead_keys.push(*k);
break; break;
}; };
@ -582,13 +582,13 @@ impl RouteSpecStore {
fn detail<'a>( fn detail<'a>(
inner: &'a RouteSpecStoreInner, inner: &'a RouteSpecStoreInner,
route_spec_key: &TypedKey, route_spec_key: &PublicKey,
) -> Option<&'a RouteSpecDetail> { ) -> Option<&'a RouteSpecDetail> {
inner.content.details.get(route_spec_key) inner.content.details.get(route_spec_key)
} }
fn detail_mut<'a>( fn detail_mut<'a>(
inner: &'a mut RouteSpecStoreInner, inner: &'a mut RouteSpecStoreInner,
route_spec_key: &TypedKey, route_spec_key: &PublicKey,
) -> Option<&'a mut RouteSpecDetail> { ) -> Option<&'a mut RouteSpecDetail> {
inner.content.details.get_mut(route_spec_key) inner.content.details.get_mut(route_spec_key)
} }
@ -1594,9 +1594,10 @@ impl RouteSpecStore {
&self, &self,
inner: &mut RouteSpecStoreInner, inner: &mut RouteSpecStoreInner,
rti: &RoutingTableInner, rti: &RoutingTableInner,
crypto_kind: CryptoKind,
safety_spec: &SafetySpec, safety_spec: &SafetySpec,
direction: DirectionSet, direction: DirectionSet,
avoid_nodes: &[PublicKey], avoid_nodes: &[TypedKey],
) -> EyreResult<Option<PublicKey>> { ) -> EyreResult<Option<PublicKey>> {
// Ensure the total hop count isn't too long for our config // Ensure the total hop count isn't too long for our config
let max_route_hop_count = self.unlocked_inner.max_route_hop_count; let max_route_hop_count = self.unlocked_inner.max_route_hop_count;
@ -1610,9 +1611,12 @@ impl RouteSpecStore {
// See if the preferred route is here // See if the preferred route is here
if let Some(preferred_route) = safety_spec.preferred_route { if let Some(preferred_route) = safety_spec.preferred_route {
if let Some(preferred_rsd) = inner.content.details.get(&preferred_route) { if let Some(preferred_rsd) = inner.content.details.get(&preferred_route) {
// Only use the preferred route if it doesn't end with the avoid nodes // Only use the preferred route if it has the desire crypto kind
if !avoid_node_ids.contains(preferred_rsd.hops.last().unwrap()) { if preferred_rsd.crypto_kind == crypto_kind {
return Ok(Some(preferred_route)); // Only use the preferred route if it doesn't end with the avoid nodes
if !avoid_nodes.contains(&TypedKey::new(crypto_kind, preferred_rsd.hops.last().cloned().unwrap())) {
return Ok(Some(preferred_route));
}
} }
} }
} }
@ -1657,7 +1661,7 @@ impl RouteSpecStore {
&self, &self,
crypto_kind: CryptoKind, crypto_kind: CryptoKind,
safety_spec: &SafetySpec, safety_spec: &SafetySpec,
avoid_nodes: &[PublicKey], avoid_nodes: &[TypedKey],
) -> EyreResult<Option<PublicKey>> { ) -> EyreResult<Option<PublicKey>> {
let inner = &mut *self.inner.lock(); let inner = &mut *self.inner.lock();
let routing_table = self.unlocked_inner.routing_table.clone(); let routing_table = self.unlocked_inner.routing_table.clone();
@ -1666,6 +1670,7 @@ impl RouteSpecStore {
Ok(self.get_route_for_safety_spec_inner( Ok(self.get_route_for_safety_spec_inner(
inner, inner,
rti, rti,
crypto_kind,
safety_spec, safety_spec,
Direction::Inbound.into(), Direction::Inbound.into(),
avoid_nodes, avoid_nodes,
@ -1673,6 +1678,7 @@ impl RouteSpecStore {
} }
/// Assemble private route for publication /// Assemble private route for publication
/// Returns a PrivateRoute object for an allocated private route
#[instrument(level = "trace", skip(self), err)] #[instrument(level = "trace", skip(self), err)]
pub fn assemble_private_route( pub fn assemble_private_route(
&self, &self,
@ -1683,8 +1689,15 @@ impl RouteSpecStore {
let routing_table = self.unlocked_inner.routing_table.clone(); let routing_table = self.unlocked_inner.routing_table.clone();
let rti = &*routing_table.inner.read(); let rti = &*routing_table.inner.read();
// Get the route spec detail for the requested private route
let rsd = Self::detail(inner, key).ok_or_else(|| eyre!("route does not exist"))?; let rsd = Self::detail(inner, key).ok_or_else(|| eyre!("route does not exist"))?;
// Ensure we get the crypto for it
let crypto = routing_table.network_manager().crypto();
let Some(vcrypto) = crypto.get(rsd.crypto_kind) else {
bail!("crypto not supported for route");
};
// See if we can optimize this compilation yet // See if we can optimize this compilation yet
// We don't want to include full nodeinfo if we don't have to // We don't want to include full nodeinfo if we don't have to
let optimized = optimized let optimized = optimized
@ -1696,7 +1709,10 @@ impl RouteSpecStore {
if !rti.has_valid_own_node_info(RoutingDomain::PublicInternet) { if !rti.has_valid_own_node_info(RoutingDomain::PublicInternet) {
bail!("can't make private routes until our node info is valid"); bail!("can't make private routes until our node info is valid");
} }
RouteNode::NodeId(NodeId::new(routing_table.node_id())) let Some(node_id) = routing_table.node_ids().get(rsd.crypto_kind) else {
bail!("missing node id for crypto kind");
};
RouteNode::NodeId(node_id.key)
} else { } else {
let Some(pi) = rti.get_own_peer_info(RoutingDomain::PublicInternet) else { let Some(pi) = rti.get_own_peer_info(RoutingDomain::PublicInternet) else {
bail!("can't make private routes until our node info is valid"); bail!("can't make private routes until our node info is valid");
@ -1706,12 +1722,11 @@ impl RouteSpecStore {
next_hop: None, next_hop: None,
}; };
let crypto = routing_table.network_manager().crypto();
// Loop for each hop // Loop for each hop
let hop_count = rsd.hops.len(); let hop_count = rsd.hops.len();
// iterate hops in private route order (reverse, but inside out) // iterate hops in private route order (reverse, but inside out)
for h in 0..hop_count { for h in 0..hop_count {
let nonce = Crypto::get_random_nonce(); let nonce = vcrypto.random_nonce();
let blob_data = { let blob_data = {
let mut rh_message = ::capnp::message::Builder::new_default(); let mut rh_message = ::capnp::message::Builder::new_default();
@ -1721,10 +1736,10 @@ impl RouteSpecStore {
}; };
// Encrypt the previous blob ENC(nonce, DH(PKhop,SKpr)) // Encrypt the previous blob ENC(nonce, DH(PKhop,SKpr))
let dh_secret = crypto let dh_secret = vcrypto
.cached_dh(&rsd.hops[h], &rsd.secret_key) .cached_dh(&rsd.hops[h], &rsd.secret_key)
.wrap_err("dh failed")?; .wrap_err("dh failed")?;
let enc_msg_data = Crypto::encrypt_aead(blob_data.as_slice(), &nonce, &dh_secret, None) let enc_msg_data = vcrypto.encrypt_aead(blob_data.as_slice(), &nonce, &dh_secret, None)
.wrap_err("encryption failed")?; .wrap_err("encryption failed")?;
let route_hop_data = RouteHopData { let route_hop_data = RouteHopData {
nonce, nonce,
@ -1734,14 +1749,14 @@ impl RouteSpecStore {
route_hop = RouteHop { route_hop = RouteHop {
node: if optimized { node: if optimized {
// Optimized, no peer info, just the dht key // Optimized, no peer info, just the dht key
RouteNode::NodeId(NodeId::new(rsd.hops[h])) RouteNode::NodeId(rsd.hops[h])
} else { } else {
// Full peer info, required until we are sure the route has been fully established // Full peer info, required until we are sure the route has been fully established
let node_id = rsd.hops[h]; let node_id = TypedKey::new(rsd.crypto_kind, rsd.hops[h]);
let pi = rti let pi = rti
.with_node_entry(node_id, |entry| { .with_node_entry(node_id, |entry| {
entry.with(rti, |_rti, e| { entry.with(rti, |_rti, e| {
e.make_peer_info(node_id, RoutingDomain::PublicInternet) e.make_peer_info(RoutingDomain::PublicInternet)
}) })
}) })
.flatten(); .flatten();
@ -1755,7 +1770,7 @@ impl RouteSpecStore {
} }
let private_route = PrivateRoute { let private_route = PrivateRoute {
public_key: key.clone(), public_key: TypedKey::new(rsd.crypto_kind, key.clone()),
// add hop for 'FirstHop' // add hop for 'FirstHop'
hop_count: (hop_count + 1).try_into().unwrap(), hop_count: (hop_count + 1).try_into().unwrap(),
hops: PrivateRouteHops::FirstHop(route_hop), hops: PrivateRouteHops::FirstHop(route_hop),
@ -1765,27 +1780,35 @@ impl RouteSpecStore {
/// Import a remote private route for compilation /// Import a remote private route for compilation
#[instrument(level = "trace", skip(self, blob), ret, err)] #[instrument(level = "trace", skip(self, blob), ret, err)]
pub fn import_remote_private_route(&self, blob: Vec<u8>) -> EyreResult<PublicKey> { pub fn import_remote_private_route(&self, blob: Vec<u8>) -> EyreResult<TypedKeySet> {
// decode the pr blob // decode the pr blob
let private_route = RouteSpecStore::blob_to_private_route(blob)?; let private_routes = RouteSpecStore::blob_to_private_routes(blob)?;
// ensure private route has first hop let mut out = TypedKeySet::new();
if !matches!(private_route.hops, PrivateRouteHops::FirstHop(_)) {
bail!("private route must have first hop");
}
// ensure this isn't also an allocated route
let inner = &mut *self.inner.lock(); let inner = &mut *self.inner.lock();
if Self::detail(inner, &private_route.public_key).is_some() {
bail!("should not import allocated route"); for private_route in private_routes {
// ensure private route has first hop
if !matches!(private_route.hops, PrivateRouteHops::FirstHop(_)) {
bail!("private route must have first hop");
}
// ensure this isn't also an allocated route
if Self::detail(inner, &private_route.public_key.key).is_some() {
bail!("should not import allocated route");
}
// store the private route in our cache
let cur_ts = get_aligned_timestamp();
let key = Self::with_create_remote_private_route(inner, cur_ts, private_route, |r| {
r.private_route.as_ref().unwrap().public_key.clone()
});
out.add(key);
} }
// store the private route in our cache Ok(out)
let cur_ts = get_aligned_timestamp();
let key = Self::with_create_remote_private_route(inner, cur_ts, private_route, |r| {
r.private_route.as_ref().unwrap().public_key.clone()
});
Ok(key)
} }
/// Release a remote private route that is no longer in use /// Release a remote private route that is no longer in use
@ -1829,7 +1852,7 @@ impl RouteSpecStore {
where where
F: FnOnce(&mut RemotePrivateRouteInfo) -> R, F: FnOnce(&mut RemotePrivateRouteInfo) -> R,
{ {
let pr_pubkey = private_route.public_key; let pr_pubkey = private_route.public_key.key;
let rpr = inner let rpr = inner
.cache .cache
@ -2045,33 +2068,64 @@ impl RouteSpecStore {
} }
} }
/// Convert private route to binary blob /// Convert private route list to binary blob
pub fn private_route_to_blob(private_route: &PrivateRoute) -> EyreResult<Vec<u8>> { pub fn private_routes_to_blob(private_routes: &[PrivateRoute]) -> EyreResult<Vec<u8>> {
let mut pr_message = ::capnp::message::Builder::new_default(); let mut pr_message = ::capnp::message::Builder::new_default();
let mut pr_builder = pr_message.init_root::<veilid_capnp::private_route::Builder>(); let mut pr_builder = pr_message.init_root::<veilid_capnp::private_route::Builder>();
encode_private_route(&private_route, &mut pr_builder)
.wrap_err("failed to encode private route")?;
let mut buffer = vec![]; let mut buffer = vec![];
capnp::serialize_packed::write_message(&mut buffer, &pr_message)
.map_err(RPCError::internal) // Serialize count
.wrap_err("failed to convert builder to vec")?; let pr_count = private_routes.len();
if pr_count > MAX_CRYPTO_KINDS {
bail!("too many crypto kinds to encode blob");
}
let pr_count = pr_count as u8;
buffer.push(pr_count);
// Serialize stream of private routes
for private_route in private_routes {
encode_private_route(private_route, &mut pr_builder)
.wrap_err("failed to encode private route")?;
capnp::serialize_packed::write_message(&mut buffer, &pr_message)
.map_err(RPCError::internal)
.wrap_err("failed to convert builder to vec")?;
}
Ok(buffer) Ok(buffer)
} }
/// Convert binary blob to private route /// Convert binary blob to private route
pub fn blob_to_private_route(blob: Vec<u8>) -> EyreResult<PrivateRoute> { pub fn blob_to_private_routes(blob: Vec<u8>) -> EyreResult<Vec<PrivateRoute>> {
let reader = capnp::serialize_packed::read_message(
blob.as_slice(),
capnp::message::ReaderOptions::new(),
)
.map_err(RPCError::internal)
.wrap_err("failed to make message reader")?;
let pr_reader = reader // Deserialize count
.get_root::<veilid_capnp::private_route::Reader>() if blob.is_empty() {
bail!("not deserializing empty private route blob");
}
let pr_count = blob[0] as usize;
if pr_count > MAX_CRYPTO_KINDS {
bail!("too many crypto kinds to decode blob");
}
// Deserialize stream of private routes
let pr_slice = &blob[1..];
let mut out = Vec::with_capacity(pr_count);
for _ in 0..pr_count {
let reader = capnp::serialize_packed::read_message(
&mut pr_slice,
capnp::message::ReaderOptions::new(),
)
.map_err(RPCError::internal) .map_err(RPCError::internal)
.wrap_err("failed to make reader for private_route")?; .wrap_err("failed to make message reader")?;
decode_private_route(&pr_reader).wrap_err("failed to decode private route")
let pr_reader = reader
.get_root::<veilid_capnp::private_route::Reader>()
.map_err(RPCError::internal)
.wrap_err("failed to make reader for private_route")?;
let private_route = decode_private_route(&pr_reader).wrap_err("failed to decode private route")?;
out.push(private_route);
}
Ok(out)
} }
} }

View File

@ -413,6 +413,7 @@ impl RoutingTableInner {
&self, &self,
routing_domain_set: RoutingDomainSet, routing_domain_set: RoutingDomainSet,
min_state: BucketEntryState, min_state: BucketEntryState,
crypto_kinds: &[CryptoKind], xxx finish this and peer minimum refresh and bootstrap tick, then both routines
) -> usize { ) -> usize {
let mut count = 0usize; let mut count = 0usize;
let cur_ts = get_aligned_timestamp(); let cur_ts = get_aligned_timestamp();
@ -451,7 +452,7 @@ impl RoutingTableInner {
mut f: F, mut f: F,
) -> Option<T> { ) -> Option<T> {
for entry in self.all_entries { for entry in self.all_entries {
if entry.with(self, |_rti, e| e.state(cur_ts) >= min_state) { if entry.with_inner(|e| e.state(cur_ts) >= min_state) {
if let Some(out) = f(self, entry) { if let Some(out) = f(self, entry) {
return Some(out); return Some(out);
} }
@ -474,7 +475,7 @@ impl RoutingTableInner {
// Collect all entries that are 'needs_ping' and have some node info making them reachable somehow // Collect all entries that are 'needs_ping' and have some node info making them reachable somehow
let mut node_refs = Vec::<NodeRef>::with_capacity(self.bucket_entry_count()); let mut node_refs = Vec::<NodeRef>::with_capacity(self.bucket_entry_count());
self.with_entries(cur_ts, BucketEntryState::Unreliable, |rti, entry| { self.with_entries(cur_ts, BucketEntryState::Unreliable, |rti, entry| {
if entry.with(rti, |rti, e| { if entry.with_inner(|e| {
// If this isn't in the routing domain we are checking, don't include it // If this isn't in the routing domain we are checking, don't include it
if !e.exists_in_routing_domain(rti, routing_domain) { if !e.exists_in_routing_domain(rti, routing_domain) {
return false; return false;
@ -757,7 +758,7 @@ impl RoutingTableInner {
let cur_ts = get_aligned_timestamp(); let cur_ts = get_aligned_timestamp();
for entry in self.all_entries { for entry in self.all_entries {
match entry.with(self, |_rti, e| e.state(cur_ts)) { match entry.with_inner(|e| e.state(cur_ts)) {
BucketEntryState::Reliable => { BucketEntryState::Reliable => {
reliable_entry_count += 1; reliable_entry_count += 1;
} }
@ -807,7 +808,7 @@ impl RoutingTableInner {
) -> Vec<NodeRef> { ) -> Vec<NodeRef> {
let public_node_filter = Box::new(|rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| { let public_node_filter = Box::new(|rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
let entry = v.unwrap(); let entry = v.unwrap();
entry.with(rti, |_rti, e| { entry.with_inner(|e| {
// skip nodes on local network // skip nodes on local network
if e.node_info(RoutingDomain::LocalNetwork).is_some() { if e.node_info(RoutingDomain::LocalNetwork).is_some() {
return false; return false;
@ -838,7 +839,7 @@ impl RoutingTableInner {
) -> bool { ) -> bool {
match entry { match entry {
None => has_valid_own_node_info, None => has_valid_own_node_info,
Some(entry) => entry.with(self, |_rti, e| { Some(entry) => entry.with_inner(|e| {
e.signed_node_info(routing_domain.into()) e.signed_node_info(routing_domain.into())
.map(|sni| sni.has_any_signature()) .map(|sni| sni.has_any_signature())
.unwrap_or(false) .unwrap_or(false)
@ -854,7 +855,7 @@ impl RoutingTableInner {
) -> PeerInfo { ) -> PeerInfo {
match entry { match entry {
None => own_peer_info.clone(), None => own_peer_info.clone(),
Some(entry) => entry.with(self, |_rti, e| e.make_peer_info(routing_domain).unwrap()), Some(entry) => entry.with_inner(|e| e.make_peer_info(routing_domain).unwrap()),
} }
} }
@ -932,7 +933,7 @@ impl RoutingTableInner {
move |rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| { move |rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
if let Some(entry) = &v { if let Some(entry) = &v {
// always filter out dead nodes // always filter out dead nodes
if entry.with(rti, |_rti, e| e.state(cur_ts) == BucketEntryState::Dead) { if entry.with_inner(|e| e.state(cur_ts) == BucketEntryState::Dead) {
false false
} else { } else {
true true
@ -970,8 +971,8 @@ impl RoutingTableInner {
// reliable nodes come first // reliable nodes come first
let ae = a_entry.as_ref().unwrap(); let ae = a_entry.as_ref().unwrap();
let be = b_entry.as_ref().unwrap(); let be = b_entry.as_ref().unwrap();
ae.with(rti, |rti, ae| { ae.with_inner(|ae| {
be.with(rti, |_rti, be| { be.with_inner(|be| {
let ra = ae.check_reliable(cur_ts); let ra = ae.check_reliable(cur_ts);
let rb = be.check_reliable(cur_ts); let rb = be.check_reliable(cur_ts);
if ra != rb { if ra != rb {
@ -1020,7 +1021,25 @@ impl RoutingTableInner {
{ {
let cur_ts = get_aligned_timestamp(); let cur_ts = get_aligned_timestamp();
// closest sort // Get the crypto kind
let crypto_kind = node_id.kind;
let vcrypto = self.unlocked_inner.crypto().get(crypto_kind).unwrap();
// Filter to ensure entries support the crypto kind in use
let filter = Box::new(
move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
if let Some(entry) = opt_entry {
entry.with_inner(|e| e.crypto_kinds().contains(&crypto_kind))
} else {
VALID_CRYPTO_KINDS.contains(&crypto_kind)
}
},
) as RoutingTableEntryFilter;
filters.push_front(filter);
// Closest sort
// Distance is done using the node id's distance metric which may vary based on crypto system
let sort = |rti: &RoutingTableInner, let sort = |rti: &RoutingTableInner,
a_entry: &Option<Arc<BucketEntry>>, a_entry: &Option<Arc<BucketEntry>>,
b_entry: &Option<Arc<BucketEntry>>| { b_entry: &Option<Arc<BucketEntry>>| {
@ -1038,10 +1057,10 @@ impl RoutingTableInner {
// reliable nodes come first, pessimistically treating our own node as unreliable // reliable nodes come first, pessimistically treating our own node as unreliable
let ra = a_entry let ra = a_entry
.as_ref() .as_ref()
.map_or(false, |x| x.with(rti, |_rti, x| x.check_reliable(cur_ts))); .map_or(false, |x| x.with_inner(|x| x.check_reliable(cur_ts)));
let rb = b_entry let rb = b_entry
.as_ref() .as_ref()
.map_or(false, |x| x.with(rti, |_rti, x| x.check_reliable(cur_ts))); .map_or(false, |x| x.with_inner(|x| x.check_reliable(cur_ts)));
if ra != rb { if ra != rb {
if ra { if ra {
return core::cmp::Ordering::Less; return core::cmp::Ordering::Less;
@ -1050,9 +1069,24 @@ impl RoutingTableInner {
} }
} }
// get keys
let a_key = if let Some(a_entry) = a_entry {
a_entry.with_inner(|e| e.node_ids().get(crypto_kind).unwrap())
} else {
self.unlocked_inner.node_id(crypto_kind)
};
let b_key = if let Some(b_entry) = b_entry {
b_entry.with_inner(|e| e.node_ids().get(crypto_kind).unwrap())
} else {
self.unlocked_inner.node_id(crypto_kind)
};
// distance is the next metric, closer nodes first // distance is the next metric, closer nodes first
let da = distance(a_key, &node_id); // since multiple cryptosystems are in use, the distance for a key is the shortest
let db = distance(b_key, &node_id); // distance to that key over all supported cryptosystems
let da = vcrypto.distance(&a_key.key, &node_id.key);
let db = vcrypto.distance(&b_key.key, &node_id.key);
da.cmp(&db) da.cmp(&db)
}; };

View File

@ -262,12 +262,15 @@ impl RoutingTable {
self.register_node_with_peer_info(RoutingDomain::PublicInternet, pi, false) self.register_node_with_peer_info(RoutingDomain::PublicInternet, pi, false)
{ {
// Add this our futures to process in parallel // Add this our futures to process in parallel
let routing_table = self.clone(); for crypto_kind in VALID_CRYPTO_KINDS {
unord.push( let routing_table = self.clone();
// lets ask bootstrap to find ourselves now let nr = nr.clone();
async move { routing_table.reverse_find_node(nr, true).await } unord.push(
.instrument(Span::current()), // lets ask bootstrap to find ourselves now
); async move { routing_table.reverse_find_node(crypto_kind, nr, true).await }
.instrument(Span::current()),
);
}
} }
} }
} }
@ -337,27 +340,32 @@ impl RoutingTable {
self.register_node_with_peer_info(RoutingDomain::PublicInternet, pi, true) self.register_node_with_peer_info(RoutingDomain::PublicInternet, pi, true)
{ {
// Add this our futures to process in parallel // Add this our futures to process in parallel
let routing_table = self.clone(); for crypto_kind in VALID_CRYPTO_KINDS {
unord.push( let nr = nr.clone();
async move { let routing_table = self.clone();
// Need VALID signed peer info, so ask bootstrap to find_node of itself unord.push(
// which will ensure it has the bootstrap's signed peer info as part of the response async move {
let _ = routing_table.find_target(nr.clone()).await; // Need VALID signed peer info, so ask bootstrap to find_node of itself
// which will ensure it has the bootstrap's signed peer info as part of the response
let _ = routing_table.find_target(crypto_kind, nr.clone()).await;
// Ensure we got the signed peer info // Ensure we got the signed peer info
if !nr.signed_node_info_has_valid_signature(RoutingDomain::PublicInternet) { if !nr
log_rtab!(warn .signed_node_info_has_valid_signature(RoutingDomain::PublicInternet)
"bootstrap at {:?} did not return valid signed node info", {
nr log_rtab!(warn
); "bootstrap at {:?} did not return valid signed node info",
// If this node info is invalid, it will time out after being unpingable nr
} else { );
// otherwise this bootstrap is valid, lets ask it to find ourselves now // If this node info is invalid, it will time out after being unpingable
routing_table.reverse_find_node(nr, true).await } else {
// otherwise this bootstrap is valid, lets ask it to find ourselves now
routing_table.reverse_find_node(crypto_kind, nr, true).await
}
} }
} .instrument(Span::current()),
.instrument(Span::current()), );
); }
} }
} }

View File

@ -20,22 +20,39 @@ impl RoutingTable {
// For the PublicInternet routing domain, get list of all peers we know about // For the PublicInternet routing domain, get list of all peers we know about
// even the unreliable ones, and ask them to find nodes close to our node too // even the unreliable ones, and ask them to find nodes close to our node too
let routing_table = self.clone();
let noderefs = routing_table.find_fastest_nodes(
min_peer_count,
VecDeque::new(),
|_rti, entry: Option<Arc<BucketEntry>>| {
NodeRef::new(routing_table.clone(), entry.unwrap().clone(), None)
},
);
let mut ord = FuturesOrdered::new(); let mut ord = FuturesOrdered::new();
for nr in noderefs {
for crypto_kind in VALID_CRYPTO_KINDS {
let routing_table = self.clone(); let routing_table = self.clone();
ord.push_back(
async move { routing_table.reverse_find_node(nr, false).await } let mut filters = VecDeque::new();
.instrument(Span::current()), let filter = Box::new(
move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
if let Some(entry) = opt_entry {
entry.with_inner(|e| e.crypto_kinds().contains(&crypto_kind))
} else {
VALID_CRYPTO_KINDS.contains(&crypto_kind)
}
},
) as RoutingTableEntryFilter;
filters.push_front(filter);
let noderefs = routing_table.find_fastest_nodes(
min_peer_count,
filters,
|_rti, entry: Option<Arc<BucketEntry>>| {
NodeRef::new(routing_table.clone(), entry.unwrap().clone(), None)
},
); );
for nr in noderefs {
let routing_table = self.clone();
ord.push_back(
async move { routing_table.reverse_find_node(nr, false).await }
.instrument(Span::current()),
);
}
} }
// do peer minimum search in order from fastest to slowest // do peer minimum search in order from fastest to slowest

View File

@ -15,9 +15,12 @@ impl RPCAnswer {
pub fn desc(&self) -> &'static str { pub fn desc(&self) -> &'static str {
self.detail.desc() self.detail.desc()
} }
pub fn decode(reader: &veilid_capnp::answer::Reader) -> Result<RPCAnswer, RPCError> { pub fn decode(
reader: &veilid_capnp::answer::Reader,
crypto: Crypto,
) -> Result<RPCAnswer, RPCError> {
let d_reader = reader.get_detail(); let d_reader = reader.get_detail();
let detail = RPCAnswerDetail::decode(&d_reader)?; let detail = RPCAnswerDetail::decode(&d_reader, crypto)?;
Ok(RPCAnswer { detail }) Ok(RPCAnswer { detail })
} }
pub fn encode(&self, builder: &mut veilid_capnp::answer::Builder) -> Result<(), RPCError> { pub fn encode(&self, builder: &mut veilid_capnp::answer::Builder) -> Result<(), RPCError> {
@ -60,6 +63,7 @@ impl RPCAnswerDetail {
pub fn decode( pub fn decode(
reader: &veilid_capnp::answer::detail::Reader, reader: &veilid_capnp::answer::detail::Reader,
crypto: Crypto,
) -> Result<RPCAnswerDetail, RPCError> { ) -> Result<RPCAnswerDetail, RPCError> {
let which_reader = reader.which().map_err(RPCError::protocol)?; let which_reader = reader.which().map_err(RPCError::protocol)?;
let out = match which_reader { let out = match which_reader {
@ -70,7 +74,7 @@ impl RPCAnswerDetail {
} }
veilid_capnp::answer::detail::FindNodeA(r) => { veilid_capnp::answer::detail::FindNodeA(r) => {
let op_reader = r.map_err(RPCError::protocol)?; let op_reader = r.map_err(RPCError::protocol)?;
let out = RPCOperationFindNodeA::decode(&op_reader)?; let out = RPCOperationFindNodeA::decode(&op_reader, crypto)?;
RPCAnswerDetail::FindNodeA(out) RPCAnswerDetail::FindNodeA(out)
} }
veilid_capnp::answer::detail::AppCallA(r) => { veilid_capnp::answer::detail::AppCallA(r) => {
@ -100,7 +104,7 @@ impl RPCAnswerDetail {
} }
veilid_capnp::answer::detail::FindBlockA(r) => { veilid_capnp::answer::detail::FindBlockA(r) => {
let op_reader = r.map_err(RPCError::protocol)?; let op_reader = r.map_err(RPCError::protocol)?;
let out = RPCOperationFindBlockA::decode(&op_reader)?; let out = RPCOperationFindBlockA::decode(&op_reader, crypto)?;
RPCAnswerDetail::FindBlockA(out) RPCAnswerDetail::FindBlockA(out)
} }
veilid_capnp::answer::detail::StartTunnelA(r) => { veilid_capnp::answer::detail::StartTunnelA(r) => {

View File

@ -29,12 +29,12 @@ impl RPCOperationKind {
} }
veilid_capnp::operation::kind::Which::Statement(r) => { veilid_capnp::operation::kind::Which::Statement(r) => {
let q_reader = r.map_err(RPCError::protocol)?; let q_reader = r.map_err(RPCError::protocol)?;
let out = RPCStatement::decode(&q_reader)?; let out = RPCStatement::decode(&q_reader, crypto)?;
RPCOperationKind::Statement(out) RPCOperationKind::Statement(out)
} }
veilid_capnp::operation::kind::Which::Answer(r) => { veilid_capnp::operation::kind::Which::Answer(r) => {
let q_reader = r.map_err(RPCError::protocol)?; let q_reader = r.map_err(RPCError::protocol)?;
let out = RPCAnswer::decode(&q_reader)?; let out = RPCAnswer::decode(&q_reader, crypto)?;
RPCOperationKind::Answer(out) RPCOperationKind::Answer(out)
} }
}; };

View File

@ -35,6 +35,7 @@ pub struct RPCOperationFindBlockA {
impl RPCOperationFindBlockA { impl RPCOperationFindBlockA {
pub fn decode( pub fn decode(
reader: &veilid_capnp::operation_find_block_a::Reader, reader: &veilid_capnp::operation_find_block_a::Reader,
crypto: Crypto,
) -> Result<RPCOperationFindBlockA, RPCError> { ) -> Result<RPCOperationFindBlockA, RPCError> {
let data = reader.get_data().map_err(RPCError::protocol)?.to_vec(); let data = reader.get_data().map_err(RPCError::protocol)?.to_vec();
@ -46,7 +47,7 @@ impl RPCOperationFindBlockA {
.map_err(RPCError::map_internal("too many suppliers"))?, .map_err(RPCError::map_internal("too many suppliers"))?,
); );
for s in suppliers_reader.iter() { for s in suppliers_reader.iter() {
let peer_info = decode_peer_info(&s)?; let peer_info = decode_peer_info(&s, crypto.clone())?;
suppliers.push(peer_info); suppliers.push(peer_info);
} }
@ -58,7 +59,7 @@ impl RPCOperationFindBlockA {
.map_err(RPCError::map_internal("too many peers"))?, .map_err(RPCError::map_internal("too many peers"))?,
); );
for p in peers_reader.iter() { for p in peers_reader.iter() {
let peer_info = decode_peer_info(&p)?; let peer_info = decode_peer_info(&p, crypto.clone())?;
peers.push(peer_info); peers.push(peer_info);
} }

View File

@ -10,7 +10,7 @@ impl RPCOperationFindNodeQ {
reader: &veilid_capnp::operation_find_node_q::Reader, reader: &veilid_capnp::operation_find_node_q::Reader,
) -> Result<RPCOperationFindNodeQ, RPCError> { ) -> Result<RPCOperationFindNodeQ, RPCError> {
let ni_reader = reader.get_node_id().map_err(RPCError::protocol)?; let ni_reader = reader.get_node_id().map_err(RPCError::protocol)?;
let node_id = decode_key256(&ni_reader); let node_id = decode_typed_key(&ni_reader)?;
Ok(RPCOperationFindNodeQ { node_id }) Ok(RPCOperationFindNodeQ { node_id })
} }
pub fn encode( pub fn encode(
@ -18,7 +18,7 @@ impl RPCOperationFindNodeQ {
builder: &mut veilid_capnp::operation_find_node_q::Builder, builder: &mut veilid_capnp::operation_find_node_q::Builder,
) -> Result<(), RPCError> { ) -> Result<(), RPCError> {
let mut ni_builder = builder.reborrow().init_node_id(); let mut ni_builder = builder.reborrow().init_node_id();
encode_key256(&self.node_id, &mut ni_builder)?; encode_typed_key(&self.node_id, &mut ni_builder);
Ok(()) Ok(())
} }
} }
@ -31,6 +31,7 @@ pub struct RPCOperationFindNodeA {
impl RPCOperationFindNodeA { impl RPCOperationFindNodeA {
pub fn decode( pub fn decode(
reader: &veilid_capnp::operation_find_node_a::Reader, reader: &veilid_capnp::operation_find_node_a::Reader,
crypto: Crypto,
) -> Result<RPCOperationFindNodeA, RPCError> { ) -> Result<RPCOperationFindNodeA, RPCError> {
let peers_reader = reader.get_peers().map_err(RPCError::protocol)?; let peers_reader = reader.get_peers().map_err(RPCError::protocol)?;
let mut peers = Vec::<PeerInfo>::with_capacity( let mut peers = Vec::<PeerInfo>::with_capacity(
@ -40,7 +41,7 @@ impl RPCOperationFindNodeA {
.map_err(RPCError::map_internal("too many peers"))?, .map_err(RPCError::map_internal("too many peers"))?,
); );
for p in peers_reader.iter() { for p in peers_reader.iter() {
let peer_info = decode_peer_info(&p)?; let peer_info = decode_peer_info(&p, crypto.clone())?;
peers.push(peer_info); peers.push(peer_info);
} }

View File

@ -29,7 +29,7 @@ impl RoutedOperation {
.map_err(RPCError::map_internal("too many signatures"))?, .map_err(RPCError::map_internal("too many signatures"))?,
); );
for s in sigs_reader.iter() { for s in sigs_reader.iter() {
let sig = decode_typed_signature(&s); let sig = decode_typed_signature(&s)?;
signatures.push(sig); signatures.push(sig);
} }
@ -80,9 +80,10 @@ pub struct RPCOperationRoute {
impl RPCOperationRoute { impl RPCOperationRoute {
pub fn decode( pub fn decode(
reader: &veilid_capnp::operation_route::Reader, reader: &veilid_capnp::operation_route::Reader,
crypto: Crypto,
) -> Result<RPCOperationRoute, RPCError> { ) -> Result<RPCOperationRoute, RPCError> {
let sr_reader = reader.get_safety_route().map_err(RPCError::protocol)?; let sr_reader = reader.get_safety_route().map_err(RPCError::protocol)?;
let safety_route = decode_safety_route(&sr_reader)?; let safety_route = decode_safety_route(&sr_reader, crypto)?;
let o_reader = reader.get_operation().map_err(RPCError::protocol)?; let o_reader = reader.get_operation().map_err(RPCError::protocol)?;
let operation = RoutedOperation::decode(&o_reader)?; let operation = RoutedOperation::decode(&o_reader)?;

View File

@ -8,8 +8,9 @@ pub struct RPCOperationSignal {
impl RPCOperationSignal { impl RPCOperationSignal {
pub fn decode( pub fn decode(
reader: &veilid_capnp::operation_signal::Reader, reader: &veilid_capnp::operation_signal::Reader,
crypto: Crypto,
) -> Result<RPCOperationSignal, RPCError> { ) -> Result<RPCOperationSignal, RPCError> {
let signal_info = decode_signal_info(reader)?; let signal_info = decode_signal_info(reader, crypto)?;
Ok(RPCOperationSignal { signal_info }) Ok(RPCOperationSignal { signal_info })
} }
pub fn encode( pub fn encode(

View File

@ -18,9 +18,12 @@ impl RPCStatement {
pub fn desc(&self) -> &'static str { pub fn desc(&self) -> &'static str {
self.detail.desc() self.detail.desc()
} }
pub fn decode(reader: &veilid_capnp::statement::Reader) -> Result<RPCStatement, RPCError> { pub fn decode(
reader: &veilid_capnp::statement::Reader,
crypto: Crypto,
) -> Result<RPCStatement, RPCError> {
let d_reader = reader.get_detail(); let d_reader = reader.get_detail();
let detail = RPCStatementDetail::decode(&d_reader)?; let detail = RPCStatementDetail::decode(&d_reader, crypto)?;
Ok(RPCStatement { detail }) Ok(RPCStatement { detail })
} }
pub fn encode(&self, builder: &mut veilid_capnp::statement::Builder) -> Result<(), RPCError> { pub fn encode(&self, builder: &mut veilid_capnp::statement::Builder) -> Result<(), RPCError> {
@ -52,6 +55,7 @@ impl RPCStatementDetail {
} }
pub fn decode( pub fn decode(
reader: &veilid_capnp::statement::detail::Reader, reader: &veilid_capnp::statement::detail::Reader,
crypto: Crypto,
) -> Result<RPCStatementDetail, RPCError> { ) -> Result<RPCStatementDetail, RPCError> {
let which_reader = reader.which().map_err(RPCError::protocol)?; let which_reader = reader.which().map_err(RPCError::protocol)?;
let out = match which_reader { let out = match which_reader {
@ -62,7 +66,7 @@ impl RPCStatementDetail {
} }
veilid_capnp::statement::detail::Route(r) => { veilid_capnp::statement::detail::Route(r) => {
let op_reader = r.map_err(RPCError::protocol)?; let op_reader = r.map_err(RPCError::protocol)?;
let out = RPCOperationRoute::decode(&op_reader)?; let out = RPCOperationRoute::decode(&op_reader, crypto)?;
RPCStatementDetail::Route(out) RPCStatementDetail::Route(out)
} }
veilid_capnp::statement::detail::ValueChanged(r) => { veilid_capnp::statement::detail::ValueChanged(r) => {
@ -72,7 +76,7 @@ impl RPCStatementDetail {
} }
veilid_capnp::statement::detail::Signal(r) => { veilid_capnp::statement::detail::Signal(r) => {
let op_reader = r.map_err(RPCError::protocol)?; let op_reader = r.map_err(RPCError::protocol)?;
let out = RPCOperationSignal::decode(&op_reader)?; let out = RPCOperationSignal::decode(&op_reader, crypto)?;
RPCStatementDetail::Signal(out) RPCStatementDetail::Signal(out)
} }
veilid_capnp::statement::detail::ReturnReceipt(r) => { veilid_capnp::statement::detail::ReturnReceipt(r) => {

View File

@ -164,7 +164,7 @@ impl RPCProcessor {
// Sent directly but with a safety route, respond to private route // Sent directly but with a safety route, respond to private route
let ck = target.best_node_id().kind; let ck = target.best_node_id().kind;
let Some(pr_key) = rss let Some(pr_key) = rss
.get_private_route_for_safety_spec(ck, safety_spec, &target.node_ids().keys()) .get_private_route_for_safety_spec(ck, safety_spec, &target.node_ids())
.map_err(RPCError::internal)? else { .map_err(RPCError::internal)? else {
return Ok(NetworkResult::no_connection_other("no private route for response at this time")); return Ok(NetworkResult::no_connection_other("no private route for response at this time"));
}; };
@ -193,7 +193,7 @@ impl RPCProcessor {
let mut avoid_nodes = relay.node_ids(); let mut avoid_nodes = relay.node_ids();
avoid_nodes.add_all(&target.node_ids()); avoid_nodes.add_all(&target.node_ids());
let Some(pr_key) = rss let Some(pr_key) = rss
.get_private_route_for_safety_spec(ck, safety_spec, &avoid_nodes.keys()) .get_private_route_for_safety_spec(ck, safety_spec, &avoid_nodes)
.map_err(RPCError::internal)? else { .map_err(RPCError::internal)? else {
return Ok(NetworkResult::no_connection_other("no private route for response at this time")); return Ok(NetworkResult::no_connection_other("no private route for response at this time"));
}; };

View File

@ -87,7 +87,16 @@ struct RPCMessageHeader {
detail: RPCMessageHeaderDetail, detail: RPCMessageHeaderDetail,
} }
impl RPCMessageHeader {} impl RPCMessageHeader {
/// The crypto kind used on the RPC
pub fn crypto_kind(&self) -> CryptoKind {
match &self.detail {
RPCMessageHeaderDetail::Direct(d) => d.envelope.get_crypto_kind(),
RPCMessageHeaderDetail::SafetyRouted(s) => todo!(),
RPCMessageHeaderDetail::PrivateRouted(p) => todo!(),
}
}
}
#[derive(Debug)] #[derive(Debug)]
pub struct RPCMessageData { pub struct RPCMessageData {

View File

@ -44,6 +44,9 @@ impl RPCProcessor {
&self, &self,
msg: RPCMessage, msg: RPCMessage,
) -> Result<NetworkResult<()>, RPCError> { ) -> Result<NetworkResult<()>, RPCError> {
// Get the crypto kind used to send this question
let crypto_kind = msg.header.crypto_kind();
// Get the question // Get the question
let app_call_q = match msg.operation.kind() { let app_call_q = match msg.operation.kind() {
RPCOperationKind::Question(q) => match q.detail() { RPCOperationKind::Question(q) => match q.detail() {
@ -61,7 +64,7 @@ impl RPCProcessor {
let sender = msg let sender = msg
.opt_sender_nr .opt_sender_nr
.as_ref() .as_ref()
.map(|nr| NodeId::new(nr.node_id())); .map(|nr| nr.node_ids().get(crypto_kind).unwrap().key);
let message = app_call_q.message.clone(); let message = app_call_q.message.clone();
(self.unlocked_inner.update_callback)(VeilidUpdate::AppCall(VeilidAppCall { (self.unlocked_inner.update_callback)(VeilidUpdate::AppCall(VeilidAppCall {
sender, sender,

View File

@ -30,8 +30,16 @@ impl RPCProcessor {
_ => panic!("not a statement"), _ => panic!("not a statement"),
}; };
// Get the crypto kind used to send this question
let crypto_kind = msg.header.crypto_kind();
// Get the sender node id this came from
let sender = msg
.opt_sender_nr
.as_ref()
.map(|nr| nr.node_ids().get(crypto_kind).unwrap().key);
// Pass the message up through the update callback // Pass the message up through the update callback
let sender = msg.opt_sender_nr.map(|nr| NodeId::new(nr.node_id()));
let message = app_message.message; let message = app_message.message;
(self.unlocked_inner.update_callback)(VeilidUpdate::AppMessage(VeilidAppMessage { (self.unlocked_inner.update_callback)(VeilidUpdate::AppMessage(VeilidAppMessage {
sender, sender,

View File

@ -11,7 +11,7 @@ impl RPCProcessor {
pub async fn rpc_call_find_node( pub async fn rpc_call_find_node(
self, self,
dest: Destination, dest: Destination,
key: PublicKey, node_id: TypedKey,
) -> Result<NetworkResult<Answer<Vec<PeerInfo>>>, RPCError> { ) -> Result<NetworkResult<Answer<Vec<PeerInfo>>>, RPCError> {
// Ensure destination never has a private route // Ensure destination never has a private route
if matches!( if matches!(
@ -26,8 +26,7 @@ impl RPCProcessor {
)); ));
} }
let find_node_q_detail = let find_node_q_detail = RPCQuestionDetail::FindNodeQ(RPCOperationFindNodeQ { node_id });
RPCQuestionDetail::FindNodeQ(RPCOperationFindNodeQ { node_id: key });
let find_node_q = RPCQuestion::new( let find_node_q = RPCQuestion::new(
network_result_try!(self.get_destination_respond_to(&dest)?), network_result_try!(self.get_destination_respond_to(&dest)?),
find_node_q_detail, find_node_q_detail,
@ -90,6 +89,13 @@ impl RPCProcessor {
_ => panic!("not a question"), _ => panic!("not a question"),
}; };
// Get the crypto kinds the requesting node is capable of
let crypto_kinds = if let Some(sender_nr) = msg.opt_sender_nr {
sender_nr.node_ids().kinds()
} else {
vec![msg.header.crypto_kind()]
};
// add node information for the requesting node to our routing table // add node information for the requesting node to our routing table
let routing_table = self.routing_table(); let routing_table = self.routing_table();
let Some(own_peer_info) = routing_table.get_own_peer_info(RoutingDomain::PublicInternet) else { let Some(own_peer_info) = routing_table.get_own_peer_info(RoutingDomain::PublicInternet) else {
@ -98,10 +104,20 @@ impl RPCProcessor {
}; };
// find N nodes closest to the target node in our routing table // find N nodes closest to the target node in our routing table
let filter = Box::new( let filter = Box::new(
move |rti: &RoutingTableInner, entry: Option<Arc<BucketEntry>>| { move |rti: &RoutingTableInner, opt_entry: Option<Arc<BucketEntry>>| {
rti.filter_has_valid_signed_node_info(RoutingDomain::PublicInternet, true, entry) // ensure the returned nodes have at least the crypto kind used to send the findnodeq
if let Some(entry) = opt_entry {
if !entry.with(rti, |_rti, e| e.crypto_kinds().contains(&crypto_kind)) {
return false;
}
}
// Ensure only things that are valid/signed in the PublicInternet domain are returned
rti.filter_has_valid_signed_node_info(
RoutingDomain::PublicInternet,
true,
opt_entry,
)
}, },
) as RoutingTableEntryFilter; ) as RoutingTableEntryFilter;
let filters = VecDeque::from([filter]); let filters = VecDeque::from([filter]);

View File

@ -42,7 +42,6 @@ impl RPCProcessor {
target, target,
safety_selection: _, safety_selection: _,
} => { } => {
let opt_target_nr = self.routing_table.lookup_node_ref(*target);
let routing_domain = match relay.best_routing_domain() { let routing_domain = match relay.best_routing_domain() {
Some(rd) => rd, Some(rd) => rd,
None => { None => {
@ -51,7 +50,7 @@ impl RPCProcessor {
)) ))
} }
}; };
(opt_target_nr, routing_domain) (Some(target.clone()), routing_domain)
} }
Destination::PrivateRoute { Destination::PrivateRoute {
private_route: _, private_route: _,

View File

@ -88,7 +88,10 @@ impl RPCProcessor {
// Use the address type though, to ensure we reach an ipv6 capable node if this is // Use the address type though, to ensure we reach an ipv6 capable node if this is
// an ipv6 address // an ipv6 address
let routing_table = self.routing_table(); let routing_table = self.routing_table();
let sender_id = detail.envelope.get_sender_id(); let sender_node_id = TypedKey::new(
detail.envelope.get_crypto_kind(),
detail.envelope.get_sender_id(),
);
let routing_domain = detail.routing_domain; let routing_domain = detail.routing_domain;
let node_count = { let node_count = {
let c = self.config.get(); let c = self.config.get();
@ -102,7 +105,7 @@ impl RPCProcessor {
dial_info.clone(), dial_info.clone(),
); );
let will_validate_dial_info_filter = Box::new( let will_validate_dial_info_filter = Box::new(
move |rti: &RoutingTableInner, _k: TypedKey, v: Option<Arc<BucketEntry>>| { move |rti: &RoutingTableInner, v: Option<Arc<BucketEntry>>| {
let entry = v.unwrap(); let entry = v.unwrap();
entry.with(rti, move |_rti, e| { entry.with(rti, move |_rti, e| {
if let Some(status) = &e.node_status(routing_domain) { if let Some(status) = &e.node_status(routing_domain) {
@ -129,7 +132,7 @@ impl RPCProcessor {
} }
for peer in peers { for peer in peers {
// Ensure the peer is not the one asking for the validation // Ensure the peer is not the one asking for the validation
if peer.node_id() == sender_id { if peer.node_ids().contains(&sender_node_id) {
continue; continue;
} }

View File

@ -165,11 +165,10 @@ impl VeilidAPI {
// Private route allocation // Private route allocation
/// Allocate a new private route set with default cryptography and network options /// Allocate a new private route set with default cryptography and network options
/// Returns a list of the public key and published 'blob' pairs. Publishing as many of these /// Returns a set of keys and a publishable 'blob' with the route encrypted with each crypto kind
/// pairs as possible to the network is desirable as support for multiple cryptography /// Those nodes importing the blob will have their choice of which crypto kind to use
/// systems will require choosing a compatible route
#[instrument(level = "debug", skip(self))] #[instrument(level = "debug", skip(self))]
pub async fn new_private_route(&self) -> Result<Vec<(PublicKey, Vec<u8>)>, VeilidAPIError> { pub async fn new_private_route(&self) -> Result<(TypedKeySet, Vec<u8>), VeilidAPIError> {
self.new_custom_private_route( self.new_custom_private_route(
&VALID_CRYPTO_KINDS, &VALID_CRYPTO_KINDS,
Stability::default(), Stability::default(),
@ -185,7 +184,7 @@ impl VeilidAPI {
crypto_kinds: &[CryptoKind], crypto_kinds: &[CryptoKind],
stability: Stability, stability: Stability,
sequencing: Sequencing, sequencing: Sequencing,
) -> Result<Vec<(PublicKey, Vec<u8>)>, VeilidAPIError> { ) -> Result<(TypedKeySet, Vec<u8>), VeilidAPIError> {
let default_route_hop_count: usize = { let default_route_hop_count: usize = {
let config = self.config()?; let config = self.config()?;
let c = config.get(); let c = config.get();
@ -232,7 +231,10 @@ impl VeilidAPI {
} }
#[instrument(level = "debug", skip(self))] #[instrument(level = "debug", skip(self))]
pub fn import_remote_private_route(&self, blob: Vec<u8>) -> Result<PublicKey, VeilidAPIError> { pub fn import_remote_private_route(
&self,
blob: Vec<u8>,
) -> Result<TypedKeySet, VeilidAPIError> {
let rss = self.routing_table()?.route_spec_store(); let rss = self.routing_table()?.route_spec_store();
rss.import_remote_private_route(blob) rss.import_remote_private_route(blob)
.map_err(|e| VeilidAPIError::invalid_argument(e, "blob", "private route blob")) .map_err(|e| VeilidAPIError::invalid_argument(e, "blob", "private route blob"))

View File

@ -108,7 +108,7 @@ pub enum VeilidAPIError {
#[error("Shutdown")] #[error("Shutdown")]
Shutdown, Shutdown,
#[error("Key not found: {key}")] #[error("Key not found: {key}")]
KeyNotFound { key: TypedKey }, KeyNotFound { key: PublicKey },
#[error("No connection: {message}")] #[error("No connection: {message}")]
NoConnection { message: String }, NoConnection { message: String },
#[error("No peer info: {node_id}")] #[error("No peer info: {node_id}")]