ricochet-go/core/identity.go

package core

import (
	"crypto/rsa"
	"encoding/base64"
	"errors"
	"github.com/special/notricochet/core/utils"
	"github.com/yawning/bulb/utils/pkcs1"
	"log"
	"sync"
)

// Identity represents the local user, including their contact address,
// and contains the contacts list.
type Identity struct {
	core *Ricochet

	mutex sync.Mutex

	address     string
	privateKey  *rsa.PrivateKey
	contactList *ContactList
}

func CreateIdentity(core *Ricochet) (*Identity, error) {
	me := &Identity{
		core: core,
	}

	if err := me.loadIdentity(); err != nil {
		log.Printf("Failed loading identity: %v", err)
		return nil, err
	}

	contactList, err := LoadContactList(core)
	if err != nil {
		log.Printf("Failed loading contact list: %v", err)
		return nil, err
	}
	me.contactList = contactList

	go me.publishService(me.privateKey)
	return me, nil
}

func (me *Identity) loadIdentity() error {
	config := me.core.Config.OpenRead()
	defer config.Close()

	if config.Identity.ServiceKey != "" {
		keyData, err := base64.StdEncoding.DecodeString(config.Identity.ServiceKey)
		if err != nil {
			return err
		}

		me.privateKey, _, err = pkcs1.DecodePrivateKeyDER(keyData)
		if err != nil {
			return err
		}
		me.address, err = utils.RicochetAddressFromKey(&me.privateKey.PublicKey)
		if err != nil {
			return err
		}

		log.Printf("Loaded identity %s", me.address)
	} else {
		log.Printf("Initializing new identity")
	}

	return nil
}

func (me *Identity) setPrivateKey(key *rsa.PrivateKey) error {
	me.mutex.Lock()
	defer me.mutex.Unlock()

	if me.privateKey != nil || me.address != "" {
		return errors.New("Cannot change private key on identity")
	}

	// Save key to config
	keyData, err := pkcs1.EncodePrivateKeyDER(key)
	if err != nil {
		return err
	}
	config := me.core.Config.OpenWrite()
	config.Identity.ServiceKey = base64.StdEncoding.EncodeToString(keyData)
	config.Save()

	// Update Identity
	me.address, err = utils.RicochetAddressFromKey(&key.PublicKey)
	if err != nil {
		return err
	}
	me.privateKey = key

	log.Printf("Created new identity %s", me.address)
	return nil
}

// BUG(special): No error handling for failures under publishService
func (me *Identity) publishService(key *rsa.PrivateKey) {
	// This call will block until a control connection is available and the
	// ADD_ONION command has returned. After creating the listener, it will
	// be automatically re-published if the control connection is lost and
	// later reconnected.
	service, listener, err := me.core.Network.NewOnionListener(9878, key)
	if err != nil {
		log.Printf("Identity listener failed: %v", err)
		// XXX handle
		return
	}

	if key == nil {
		if service.PrivateKey == nil {
			log.Printf("Setting private key failed: no key returned")
			// XXX handle
			return
		}

		err := me.setPrivateKey(service.PrivateKey.(*rsa.PrivateKey))
		if err != nil {
			log.Printf("Setting private key failed: %v", err)
			// XXX handle
			return
		}
	}

	log.Printf("Identity service published, accepting connections")
	go me.core.Protocol.ServeListener(listener)
}

func (me *Identity) Address() string {
	return me.address
}

func (me *Identity) ContactList() *ContactList {
	return me.contactList
}

func (me *Identity) PrivateKey() rsa.PrivateKey {
	return *me.privateKey
}
Skeleton of core API 2016-07-01 03:18:55 +00:00			`package core`

core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`import (`
			`"crypto/rsa"`
			`"encoding/base64"`
			`"errors"`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`"github.com/special/notricochet/core/utils"`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`"github.com/yawning/bulb/utils/pkcs1"`
			`"log"`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`"sync"`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`)`
Skeleton of core API 2016-07-01 03:18:55 +00:00
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`// Identity represents the local user, including their contact address,`
			`// and contains the contacts list.`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`type Identity struct {`
core: Change the 'Ricochet' API again 2016-09-11 04:57:54 +00:00			`core *Ricochet`
core: Load contacts from config 2016-08-30 02:46:41 +00:00
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`mutex sync.Mutex`
Skeleton of core API 2016-07-01 03:18:55 +00:00
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`address string`
			`privateKey *rsa.PrivateKey`
Skeleton of core API 2016-07-01 03:18:55 +00:00			`contactList *ContactList`
			`}`

core: Change the 'Ricochet' API again 2016-09-11 04:57:54 +00:00			`func CreateIdentity(core Ricochet) (Identity, error) {`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`me := &Identity{`
			`core: core,`
			`}`

core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`if err := me.loadIdentity(); err != nil {`
			`log.Printf("Failed loading identity: %v", err)`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return nil, err`
			`}`

			`contactList, err := LoadContactList(core)`
			`if err != nil {`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`log.Printf("Failed loading contact list: %v", err)`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return nil, err`
			`}`
			`me.contactList = contactList`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`go me.publishService(me.privateKey)`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return me, nil`
			`}`

			`func (me *Identity) loadIdentity() error {`
core: Change the 'Ricochet' API again 2016-09-11 04:57:54 +00:00			`config := me.core.Config.OpenRead()`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`defer config.Close()`
core: Load contacts from config 2016-08-30 02:46:41 +00:00
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`if config.Identity.ServiceKey != "" {`
			`keyData, err := base64.StdEncoding.DecodeString(config.Identity.ServiceKey)`
			`if err != nil {`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return err`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`}`

			`me.privateKey, _, err = pkcs1.DecodePrivateKeyDER(keyData)`
			`if err != nil {`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return err`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`}`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`me.address, err = utils.RicochetAddressFromKey(&me.privateKey.PublicKey)`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`if err != nil {`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return err`
core: Load identity from config Also, slightly refactor Ricochet to be an interface to get the various top-level components, and let the implementation define it (such as backend's RicochetCore RPC type) 2016-08-30 01:49:30 +00:00			`}`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00
			`log.Printf("Loaded identity %s", me.address)`
			`} else {`
			`log.Printf("Initializing new identity")`
			`}`

			`return nil`
			`}`

			`func (me Identity) setPrivateKey(key rsa.PrivateKey) error {`
			`me.mutex.Lock()`
			`defer me.mutex.Unlock()`

			`if me.privateKey != nil \|\| me.address != "" {`
			`return errors.New("Cannot change private key on identity")`
			`}`

			`// Save key to config`
			`keyData, err := pkcs1.EncodePrivateKeyDER(key)`
			`if err != nil {`
			`return err`
			`}`
			`config := me.core.Config.OpenWrite()`
			`config.Identity.ServiceKey = base64.StdEncoding.EncodeToString(keyData)`
			`config.Save()`

			`// Update Identity`
			`me.address, err = utils.RicochetAddressFromKey(&key.PublicKey)`
			`if err != nil {`
			`return err`
Skeleton of core API 2016-07-01 03:18:55 +00:00			`}`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`me.privateKey = key`
Skeleton of core API 2016-07-01 03:18:55 +00:00
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`log.Printf("Created new identity %s", me.address)`
core: Load contacts from config 2016-08-30 02:46:41 +00:00			`return nil`
Skeleton of core API 2016-07-01 03:18:55 +00:00			`}`

core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`// BUG(special): No error handling for failures under publishService`
			`func (me Identity) publishService(key rsa.PrivateKey) {`
core: Attach protocol connections to Contact 2016-09-16 00:32:58 +00:00			`// This call will block until a control connection is available and the`
			`// ADD_ONION command has returned. After creating the listener, it will`
			`// be automatically re-published if the control connection is lost and`
			`// later reconnected.`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`service, listener, err := me.core.Network.NewOnionListener(9878, key)`
			`if err != nil {`
			`log.Printf("Identity listener failed: %v", err)`
			`// XXX handle`
			`return`
			`}`

			`if key == nil {`
core: Attach protocol connections to Contact 2016-09-16 00:32:58 +00:00			`if service.PrivateKey == nil {`
			`log.Printf("Setting private key failed: no key returned")`
			`// XXX handle`
			`return`
			`}`

core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00			`err := me.setPrivateKey(service.PrivateKey.(*rsa.PrivateKey))`
			`if err != nil {`
			`log.Printf("Setting private key failed: %v", err)`
			`// XXX handle`
			`return`
			`}`
			`}`

			`log.Printf("Identity service published, accepting connections")`
			`go me.core.Protocol.ServeListener(listener)`
			`}`

Skeleton of core API 2016-07-01 03:18:55 +00:00			`func (me *Identity) Address() string {`
			`return me.address`
			`}`

			`func (me Identity) ContactList() ContactList {`
			`return me.contactList`
			`}`
core: Add protocol from s-rah and accept inbound connections Start using Sarah's protocol implementation (plus some patches to be merged there), publish the local onion service, and handle inbound connections. 2016-09-11 04:35:03 +00:00
			`func (me *Identity) PrivateKey() rsa.PrivateKey {`
			`return *me.privateKey`
			`}`