////////////////////////////////////////////////////////////////////////////////
// Copyright © 2022 xx foundation //
// //
// Use of this source code is governed by a license that can be found in the //
// LICENSE file. //
////////////////////////////////////////////////////////////////////////////////
package xxdk
import (
"math"
"time"
"gitlab.com/xx_network/primitives/netTime"
"github.com/pkg/errors"
jww "github.com/spf13/jwalterweatherman"
"gitlab.com/elixxir/client/cmix"
"gitlab.com/elixxir/client/event"
"gitlab.com/elixxir/client/interfaces"
"gitlab.com/elixxir/client/registration"
"gitlab.com/elixxir/client/stoppable"
"gitlab.com/elixxir/client/storage"
"gitlab.com/elixxir/client/storage/user"
"gitlab.com/elixxir/comms/client"
"gitlab.com/elixxir/crypto/cyclic"
"gitlab.com/elixxir/crypto/fastRNG"
"gitlab.com/elixxir/primitives/version"
"gitlab.com/xx_network/comms/connect"
"gitlab.com/xx_network/crypto/csprng"
"gitlab.com/xx_network/crypto/large"
"gitlab.com/xx_network/crypto/signature/rsa"
"gitlab.com/xx_network/primitives/id"
"gitlab.com/xx_network/primitives/ndf"
"gitlab.com/xx_network/primitives/region"
)
const followerStoppableName = "client"
type Cmix struct {
// Generic RNG for client
rng *fastRNG.StreamGenerator
// The storage session securely stores data to disk and memoizes as is
// appropriate
storage storage.Session
// Low level comms object
comms *client.Comms
// Facilitates sane communications with cMix
network cmix.Client
// Object used to register and communicate with permissioning
permissioning *registration.Registration
// Services system to track running threads
followerServices *services
clientErrorChannel chan interfaces.ClientError
// Event reporting in event.go
events *event.Manager
}
// NewCmix creates client storage, generates keys, and connects and registers
// with the network. Note that this does not register a username/identity, but
// merely creates a new cryptographic identity for adding such information at a
// later date.
func NewCmix(
ndfJSON, storageDir string, password []byte, registrationCode string) error {
jww.INFO.Printf("NewCmix(dir: %s)", storageDir)
rngStreamGen := fastRNG.NewStreamGenerator(12, 1024, csprng.NewSystemRNG)
def, err := ParseNDF(ndfJSON)
if err != nil {
return err
}
cmixGrp, e2eGrp := DecodeGroups(def)
start := netTime.Now()
userInfo := createNewUser(rngStreamGen, e2eGrp)
jww.DEBUG.Printf(
"PortableUserInfo generation took: %s", netTime.Now().Sub(start))
_, err = CheckVersionAndSetupStorage(def, storageDir, password,
userInfo, cmixGrp, e2eGrp, registrationCode)
return err
}
// NewVanityCmix creates a user with a receptionID that starts with the
// supplied prefix. It creates client storage, generates keys, and connects and
// registers with the network. Note that this does not register a username/
// identity, but merely creates a new cryptographic identity for adding such
// information at a later date.
func NewVanityCmix(ndfJSON, storageDir string, password []byte,
registrationCode string, userIdPrefix string) error {
jww.INFO.Printf("NewVanityCmix()")
rngStreamGen := fastRNG.NewStreamGenerator(12, 1024, csprng.NewSystemRNG)
rngStream := rngStreamGen.GetStream()
def, err := ParseNDF(ndfJSON)
if err != nil {
return err
}
cmixGrp, e2eGrp := DecodeGroups(def)
userInfo := createNewVanityUser(rngStream, e2eGrp, userIdPrefix)
_, err = CheckVersionAndSetupStorage(def, storageDir, password,
userInfo, cmixGrp, e2eGrp, registrationCode)
if err != nil {
return err
}
return nil
}
// OpenCmix creates client storage but does not connect to the network or login.
// Note that this is a helper function that, in most applications, should not be
// used on its own. Consider using LoadCmix instead, which calls this function
// for you.
func OpenCmix(storageDir string, password []byte) (*Cmix, error) {
jww.INFO.Printf("OpenCmix()")
rngStreamGen := fastRNG.NewStreamGenerator(12, 1024, csprng.NewSystemRNG)
currentVersion, err := version.ParseVersion(SEMVER)
if err != nil {
return nil, errors.WithMessage(err, "Could not parse version string.")
}
passwordStr := string(password)
storageSess, err := storage.Load(storageDir, passwordStr, currentVersion)
if err != nil {
return nil, err
}
c := &Cmix{
storage: storageSess,
rng: rngStreamGen,
comms: nil,
network: nil,
followerServices: newServices(),
clientErrorChannel: make(chan interfaces.ClientError, 1000),
events: event.NewEventManager(),
}
err = c.initComms()
if err != nil {
return nil, err
}
return c, nil
}
// NewProtoCmix_Unsafe initializes a client object from a JSON containing
// predefined cryptographic that defines a user. This is designed for some
// specific deployment procedures and is generally unsafe.
func NewProtoCmix_Unsafe(ndfJSON, storageDir string, password []byte,
protoUser *user.Proto) error {
jww.INFO.Printf("NewProtoCmix_Unsafe")
usr := user.NewUserFromProto(protoUser)
def, err := ParseNDF(ndfJSON)
if err != nil {
return err
}
cmixGrp, e2eGrp := DecodeGroups(def)
storageSess, err := CheckVersionAndSetupStorage(
def, storageDir, password, usr, cmixGrp, e2eGrp, protoUser.RegCode)
if err != nil {
return err
}
storageSess.SetReceptionRegistrationValidationSignature(
protoUser.ReceptionRegValidationSig)
storageSess.SetTransmissionRegistrationValidationSignature(
protoUser.TransmissionRegValidationSig)
storageSess.SetRegistrationTimestamp(protoUser.RegistrationTimestamp)
// Move the registration state to indicate registered with registration on
// proto client
err = storageSess.ForwardRegistrationStatus(storage.PermissioningComplete)
if err != nil {
return err
}
return nil
}
// LoadCmix initializes a Cmix object from existing storage and starts the
// network.
func LoadCmix(storageDir string, password []byte, parameters CMIXParams) (
*Cmix, error) {
jww.INFO.Printf("LoadCmix()")
c, err := OpenCmix(storageDir, password)
if err != nil {
return nil, err
}
c.network, err = cmix.NewClient(
parameters.Network, c.comms, c.storage, c.rng, c.events)
if err != nil {
return nil, err
}
jww.INFO.Printf(
"Client loaded: \n\tTransmissionID: %s", c.GetTransmissionIdentity().ID)
def := c.storage.GetNDF()
// initialize registration.
if def.Registration.Address != "" {
err = c.initPermissioning(def)
if err != nil {
return nil, err
}
} else {
jww.WARN.Printf("Registration with permissioning skipped due " +
"to blank permissioning address. Cmix will not be " +
"able to register or track network.")
}
if def.Notification.Address != "" {
hp := connect.GetDefaultHostParams()
// Do not send KeepAlive packets
hp.KaClientOpts.Time = time.Duration(math.MaxInt64)
hp.AuthEnabled = false
hp.MaxRetries = 5
_, err = c.comms.AddHost(&id.NotificationBot,
def.Notification.Address,
[]byte(def.Notification.TlsCertificate), hp)
if err != nil {
jww.WARN.Printf("Failed adding host for notifications: %+v", err)
}
}
err = c.registerFollower()
if err != nil {
return nil, err
}
return c, nil
}
func (c *Cmix) initComms() error {
var err error
// get the user from session
transmissionIdentity := c.GetTransmissionIdentity()
privKey := transmissionIdentity.RSAPrivatePem
pubPEM := rsa.CreatePublicKeyPem(privKey.GetPublic())
privPEM := rsa.CreatePrivateKeyPem(privKey)
// start comms
c.comms, err = client.NewClientComms(transmissionIdentity.ID,
pubPEM, privPEM, transmissionIdentity.Salt)
if err != nil {
return errors.WithMessage(err, "failed to load client")
}
return nil
}
func (c *Cmix) initPermissioning(def *ndf.NetworkDefinition) error {
var err error
// Initialize registration
c.permissioning, err = registration.Init(c.comms, def)
if err != nil {
return errors.WithMessage(err, "failed to init permissioning handler")
}
// Register with registration if necessary
if c.storage.GetRegistrationStatus() == storage.KeyGenComplete {
jww.INFO.Printf("Cmix has not registered yet, attempting registration")
err = c.registerWithPermissioning()
if err != nil {
jww.ERROR.Printf("Cmix has failed registration: %s", err)
return errors.WithMessage(err, "failed to load client")
}
jww.INFO.Printf("Cmix successfully registered with the network")
}
return nil
}
// registerFollower adds the follower processes to the client's follower service
// list. This should only ever be called once.
func (c *Cmix) registerFollower() error {
// Build the error callback
cer := func(source, message, trace string) {
select {
case c.clientErrorChannel <- interfaces.ClientError{
Source: source,
Message: message,
Trace: trace,
}:
default:
jww.WARN.Printf("Failed to notify about ClientError from %s: %s",
source, message)
}
}
err := c.followerServices.add(c.events.EventService)
if err != nil {
return errors.WithMessage(err, "Couldn't start event reporting")
}
// Register the core follower service
err = c.followerServices.add(func() (stoppable.Stoppable, error) {
return c.network.Follow(cer)
})
if err != nil {
return errors.WithMessage(err, "Failed to start following the network")
}
return nil
}
////////////////////////////////////////////////////////////////////////////////
// Cmix Functions //
////////////////////////////////////////////////////////////////////////////////
// GetErrorsChannel returns a channel that passes errors from the long-running
// threads controlled by StartNetworkFollower and StopNetworkFollower.
func (c *Cmix) GetErrorsChannel() <-chan interfaces.ClientError {
return c.clientErrorChannel
}
// StartNetworkFollower kicks off the tracking of the network. It starts long-
// running network client threads and returns an object for checking state and
// stopping those threads.
//
// Call this when returning from sleep and close when going back to sleep.
//
// These threads may become a significant drain on battery when offline, ensure
// they are stopped if there is no internet access.
//
// Threads Started:
// - Network Follower (/network/follow.go)
// tracks the network events and hands them off to workers for handling.
// - Historical Round Retrieval (/network/rounds/historical.go)
// retrieves data about rounds that are too old to be stored by the client.
// - Message Retrieval Worker Group (/network/rounds/retrieve.go)
// requests all messages in a given round from the gateway of the last nodes.
// - Message Handling Worker Group (/network/message/handle.go)
// decrypts and partitions messages when signals via the Switchboard.
// - Health Tracker (/network/health),
// via the network instance, tracks the state of the network.
// - Garbled Messages (/network/message/garbled.go)
// can be signaled to check all recent messages that could be decoded. It
// uses a message store on disk for persistence.
// - Critical Messages (/network/message/critical.go)
// ensures all protocol layer mandatory messages are sent. It uses a message
// store on disk for persistence.
// - KeyExchange Trigger (/keyExchange/trigger.go)
// responds to sent rekeys and executes them.
// - KeyExchange Confirm (/keyExchange/confirm.go)
// responds to confirmations of successful rekey operations.
// - Auth Callback (/auth/callback.go)
// handles both auth confirm and requests.
func (c *Cmix) StartNetworkFollower(timeout time.Duration) error {
jww.INFO.Printf(
"StartNetworkFollower() \n\tTransmissionID: %s \n\tReceptionID: %s",
c.storage.GetTransmissionID(), c.storage.GetReceptionID())
return c.followerServices.start(timeout)
}
// StopNetworkFollower stops the network follower if it is running. It returns
// an error if the follower is in the wrong state to stop or if it fails to stop
// it.
//
// If the network follower is running and this fails, the client object will
// most likely be in an unrecoverable state and need to be trashed.
func (c *Cmix) StopNetworkFollower() error {
jww.INFO.Printf("StopNetworkFollower()")
return c.followerServices.stop()
}
// NetworkFollowerStatus gets the state of the network follower. It returns a
// status with the following values:
// Stopped - 0
// Running - 2000
// Stopping - 3000
func (c *Cmix) NetworkFollowerStatus() Status {
jww.INFO.Printf("NetworkFollowerStatus()")
return c.followerServices.status()
}
// HasRunningProcessies checks if any background threads are running and returns
// true if one or more are.
func (c *Cmix) HasRunningProcessies() bool {
return !c.followerServices.stoppable.IsStopped()
}
// GetRunningProcesses returns the names of all running processes at the time
// of this call. Note that this list may change and is subject to race
// conditions if multiple threads are in the process of starting or stopping.
func (c *Cmix) GetRunningProcesses() []string {
return c.followerServices.stoppable.GetRunningProcesses()
}
// GetRoundEvents registers a callback for round events.
func (c *Cmix) GetRoundEvents() interfaces.RoundEvents {
jww.INFO.Printf("GetRoundEvents()")
jww.WARN.Printf("GetRoundEvents does not handle Cmix Errors edge case!")
return c.network.GetInstance().GetRoundEvents()
}
// AddService adds a service to be controlled by the client thread control.
// These will be started and stopped with the network follower.
func (c *Cmix) AddService(sp Service) error {
return c.followerServices.add(sp)
}
// GetTransmissionIdentity returns the current TransmissionIdentity for this
// client.
func (c *Cmix) GetTransmissionIdentity() TransmissionIdentity {
jww.INFO.Printf("GetTransmissionIdentity()")
cMixUser := c.storage.PortableUserInfo()
return buildTransmissionIdentity(cMixUser)
}
// GetComms returns the client comms object.
func (c *Cmix) GetComms() *client.Comms {
return c.comms
}
// GetRng returns the client RNG object.
func (c *Cmix) GetRng() *fastRNG.StreamGenerator {
return c.rng
}
// GetStorage returns the client storage object.
func (c *Cmix) GetStorage() storage.Session {
return c.storage
}
// GetCmix returns the client network interface.
func (c *Cmix) GetCmix() cmix.Client {
return c.network
}
// GetEventReporter returns the event reporter.
func (c *Cmix) GetEventReporter() event.Reporter {
return c.events
}
// GetNodeRegistrationStatus gets the current state of nodes registration. It
// returns the number of nodes that the user is currently registered with and
// the total number of nodes in the NDF. An error is returned if the network
// is not healthy.
func (c *Cmix) GetNodeRegistrationStatus() (int, int, error) {
// Return an error if the network is not healthy
if !c.GetCmix().IsHealthy() {
return 0, 0, errors.New("Cannot get number of nodes " +
"registrations when network is not healthy")
}
nodes := c.network.GetInstance().GetPartialNdf().Get().Nodes
var numRegistered int
var numStale = 0
for i, n := range nodes {
nid, err := id.Unmarshal(n.ID)
if err != nil {
return 0, 0, errors.Errorf(
"Failed to unmarshal nodes ID %v (#%d): %s", n.ID, i, err.Error())
}
if n.Status == ndf.Stale {
numStale += 1
continue
}
if c.network.HasNode(nid) {
numRegistered++
}
}
// Get the number of in progress nodes registrations
return numRegistered, len(nodes) - numStale, nil
}
// IsReady returns true if at least percentReady of node registrations has
// completed. If not all have completed, then it returns false and howClose will
// be a percent (0-1) of node registrations completed.
func (c *Cmix) IsReady(percentReady float64) (isReady bool, howClose float64) {
// Check if the network is currently healthy
if !c.network.IsHealthy() {
return false, 0
}
numReg, numNodes, err := c.GetNodeRegistrationStatus()
if err != nil {
jww.FATAL.Panicf("Failed to get node registration status: %+v", err)
}
isReady = (float64(numReg) / float64(numNodes)) >= percentReady
howClose = float64(numReg) / (float64(numNodes) * percentReady)
return isReady, howClose
}
// PauseNodeRegistrations stops all node registrations and returns a function to
// resume them.
func (c *Cmix) PauseNodeRegistrations(timeout time.Duration) error {
return c.network.PauseNodeRegistrations(timeout)
}
// ChangeNumberOfNodeRegistrations changes the number of parallel node
// registrations up to the initialized maximum.
func (c *Cmix) ChangeNumberOfNodeRegistrations(toRun int, timeout time.Duration) error {
return c.network.ChangeNumberOfNodeRegistrations(toRun, timeout)
}
// GetPreferredBins returns the geographic bin or bins that the provided two
// character country code is a part of.
func (c *Cmix) GetPreferredBins(countryCode string) ([]string, error) {
// Get the bin that the country is in
bin, exists := region.GetCountryBin(countryCode)
if !exists {
return nil, errors.Errorf(
"failed to find geographic bin for country %q", countryCode)
}
// Add bin to list of geographic bins
bins := []string{bin.String()}
// Add additional bins in special cases
switch bin {
case region.SouthAndCentralAmerica:
bins = append(bins, region.NorthAmerica.String())
case region.MiddleEast:
bins = append(bins, region.EasternEurope.String(),
region.CentralEurope.String(),
region.WesternAsia.String())
case region.NorthernAfrica:
bins = append(bins, region.WesternEurope.String(),
region.CentralEurope.String())
case region.SouthernAfrica:
bins = append(bins, region.WesternEurope.String(),
region.CentralEurope.String())
case region.EasternAsia:
bins = append(bins, region.WesternAsia.String(),
region.Oceania.String(), region.NorthAmerica.String())
case region.WesternAsia:
bins = append(bins, region.EasternAsia.String(),
region.Russia.String(), region.MiddleEast.String())
case region.Oceania:
bins = append(bins, region.EasternAsia.String(),
region.NorthAmerica.String())
}
return bins, nil
}
////////////////////////////////////////////////////////////////////////////////
// Utility Functions //
////////////////////////////////////////////////////////////////////////////////
// ParseNDF parses the initial NDF string for the client. This function does not
// check the signature; it is deprecated.
func ParseNDF(ndfString string) (*ndf.NetworkDefinition, error) {
if ndfString == "" {
return nil, errors.New("NDF file empty")
}
netDef, err := ndf.Unmarshal([]byte(ndfString))
if err != nil {
return nil, err
}
return netDef, nil
}
// DecodeGroups returns the E2E and cMix groups from the NDF.
func DecodeGroups(ndf *ndf.NetworkDefinition) (cmixGrp, e2eGrp *cyclic.Group) {
largeIntBits := 16
// Generate the cMix group
cmixGrp = cyclic.NewGroup(
large.NewIntFromString(ndf.CMIX.Prime, largeIntBits),
large.NewIntFromString(ndf.CMIX.Generator, largeIntBits))
// Generate the e2e group
e2eGrp = cyclic.NewGroup(
large.NewIntFromString(ndf.E2E.Prime, largeIntBits),
large.NewIntFromString(ndf.E2E.Generator, largeIntBits))
return cmixGrp, e2eGrp
}
// CheckVersionAndSetupStorage checks the client version and creates a new
// storage for user data. This function is common code shared by NewCmix,
//// NewPrecannedCmix and NewVanityCmix.
func CheckVersionAndSetupStorage(def *ndf.NetworkDefinition, storageDir string,
password []byte, userInfo user.Info, cmixGrp, e2eGrp *cyclic.Group,
registrationCode string) (storage.Session, error) {
// Get current client version
currentVersion, err := version.ParseVersion(SEMVER)
if err != nil {
return nil, errors.WithMessage(err, "Could not parse version string.")
}
// Create storage
passwordStr := string(password)
storageSess, err := storage.New(storageDir, passwordStr, userInfo,
currentVersion, cmixGrp, e2eGrp)
if err != nil {
return nil, err
}
// Save NDF to be used in the future
storageSess.SetNDF(def)
// Store the registration code for later use
storageSess.SetRegCode(registrationCode)
// Move the registration state to keys generated
err = storageSess.ForwardRegistrationStatus(storage.KeyGenComplete)
if err != nil {
return nil, errors.WithMessage(
err, "Failed to denote state change in session")
}
return storageSess, nil
}