ARCHIVE/hpcore
1
0
Fork 0
mirror of https://github.com/EvernodeXRPL/hpcore.git synced 2026-04-29 15:37:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Implemented user connection challenge handshake (#20)

Browse Source 
Implemented user connection challenge handshake.
Optimized user challenge message processing.
This commit is contained in:
Ravin Perera
2019-10-11 17:29:45 +05:30
committed by GitHub
parent b2d4c93b9d
commit f64cdc6ad0
18 changed files with 547 additions and 128 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/conf.cpp
View File

@@ -154,11 +154,11 @@ int load_config()
}
// Check whether this contract complies with the min version requirement.
int verresult = util::version_compare(cfgversion, string(util::min_contract_version));
int verresult = util::version_compare(cfgversion, string(util::MIN_CONTRACT_VERSION));
if (verresult == -1)
{
cerr << "Contract version too old. Minimum "
<< util::min_contract_version << " required. "
<< util::MIN_CONTRACT_VERSION << " required. "
<< cfgversion << " found.\n";
return -1;
}
@@ -210,7 +210,7 @@ int save_config()
Document d;
d.SetObject();
Document::AllocatorType &allocator = d.GetAllocator();
d.AddMember("version", StringRef(util::hp_version), allocator);
d.AddMember("version", StringRef(util::HP_VERSION), allocator);
d.AddMember("pubkeyb64", StringRef(cfg.pubkeyb64.data()), allocator);
d.AddMember("seckeyb64", StringRef(cfg.seckeyb64.data()), allocator);
d.AddMember("keytype", StringRef(cfg.keytype.data()), allocator);
@@ -382,12 +382,13 @@ int is_schema_valid(Document &d)
const char *cfg_schema =
"{"
"\"type\": \"object\","
"\"required\": [ \"version\", \"pubkeyb64\", \"seckeyb64\", \"binary\", \"binargs\", \"listenip\""
"\"required\": [ \"version\", \"pubkeyb64\", \"seckeyb64\", \"keytype\", \"binary\", \"binargs\", \"listenip\""
", \"peers\", \"unl\", \"peerport\", \"roundtime\", \"pubport\", \"pubmaxsize\", \"pubmaxcpm\" ],"
"\"properties\": {"
"\"version\": { \"type\": \"string\" },"
"\"pubkeyb64\": { \"type\": \"string\" },"
"\"seckeyb64\": { \"type\": \"string\" },"
"\"keytype\": { \"type\": \"string\" },"
"\"binary\": { \"type\": \"string\" },"
"\"binargs\": { \"type\": \"string\" },"
"\"listenip\": { \"type\": \"string\" },"

8
src/crypto.cpp
View File

@@ -60,8 +60,8 @@ string sign(const string &msg, const string &seckey)
/**
* Returns the base64 signature string for a message.
*
* @param msg Base64 message string to sign.
* @param seckey Base64 secret key string.
* @param msg Message bytes to sign.
* @param seckeyb64 Base64 secret key string.
* @return Base64 signature string.
*/
string sign_b64(const string &msg, const string &seckeyb64)
@@ -97,8 +97,8 @@ int verify(const string &msg, const string &sig, const string &pubkey)
* Verifies the given base64 signature for the message.
*
* @param msg Base64 message string.
* @param sig Base64 signature string.
* @param pubkey Base64 secret key.
* @param sigb64 Base64 signature string.
* @param pubkeyb64 Base64 secret key.
* @return 0 for successful verification. -1 for failure.
*/
int verify_b64(const string &msg, const string &sigb64, const string &pubkeyb64)

7
src/main.cpp
View File

@@ -4,6 +4,7 @@
#include <cstdio>
#include <iostream>
#include <thread>
#include "util.hpp"
#include "conf.hpp"
#include "crypto.hpp"
@@ -67,7 +68,7 @@ int main(int argc, char **argv)
if (conf::ctx.command == "version")
{
// Print the version
cout << util::hp_version << endl;
cout << util::HP_VERSION << endl;
}
else
{
@@ -101,6 +102,10 @@ int main(int argc, char **argv)
// This will start hosting the contract and start consensus rounds.
// TODO
// Temp code to avoid exiting.
string s;
cin >> s;
}
}
}

10
src/proc.cpp
View File

@@ -19,7 +19,7 @@ namespace proc
/**
* Keeps the currently executing contract process id (if any)
*/
int contract_pid = 0;
__pid_t contract_pid = 0;
/**
* Executes the contract process and passes the specified arguments.
@@ -34,7 +34,7 @@ int exec_contract(const ContractExecArgs &args)
return -1;
}
int pid = fork();
__pid_t pid = fork();
if (pid > 0)
{
// HotPocket process.
@@ -84,12 +84,12 @@ int write_to_stdin(const ContractExecArgs &args)
d.SetObject();
Document::AllocatorType &allocator = d.GetAllocator();
d.AddMember("version", StringRef(util::hp_version), allocator);
d.AddMember("version", StringRef(util::HP_VERSION), allocator);
d.AddMember("pubkey", StringRef(conf::cfg.pubkeyb64.data()), allocator);
d.AddMember("ts", args.timestamp, allocator);
Value users(kObjectType);
for (auto &[pk, user] : args.users)
for (auto &[sid, user] : args.users)
{
Value fdlist(kArrayType);
fdlist.PushBack(user.inpipe[0], allocator);
@@ -99,7 +99,7 @@ int write_to_stdin(const ContractExecArgs &args)
d.AddMember("usrfd", users, allocator);
Value peers(kObjectType);
for (auto &[pk, peer] : args.peers)
for (auto &[sid, peer] : args.peers)
{
Value fdlist(kArrayType);
fdlist.PushBack(peer.inpipe[0], allocator);

25
src/sock/socket_session.cpp
View File

@@ -36,6 +36,10 @@ void socket_session::client_run(const std::uint16_t port, const std::string &add
port_ = port;
address_ = address;
// Create a unique id for the session combining ip and port.
uniqueid_ = address + ":";
uniqueid_.append(std::to_string(port));
if (ec)
return fail(ec, "handshake");
@@ -51,12 +55,12 @@ void socket_session::client_run(const std::uint16_t port, const std::string &add
void socket_session::fail(error_code ec, char const *what)
{
// std::cerr << what << ": " << ec.message() << std::endl;
// Don't report these
if (ec == net::error::operation_aborted ||
ec == websocket::error::closed)
return;
// std::cerr << what << ": " << ec.message() << "\n";
}
void socket_session::on_accept(error_code ec)
@@ -78,10 +82,15 @@ void socket_session::on_accept(error_code ec)
void socket_session::on_read(error_code ec, std::size_t)
{
// read may get called when operation_aborted as well.
// We don't need to process read operation in that case.
if (ec == net::error::operation_aborted)
return;
// Handle the error, if any
if (ec)
{
//if something goes wrong when trying to read, socket connection will be closed and calling this to inform it to the handler
// if something goes wrong when trying to read, socket connection will be closed and calling this to inform it to the handler
on_close(ec, 1);
return fail(ec, "read");
}
@@ -159,4 +168,14 @@ void socket_session::on_close(error_code ec, std::int8_t type)
if (ec)
return fail(ec, "close");
}
// When called, initializes the unique id string for this session.
void socket_session::init_uniqueid()
{
// Create a unique id for the session combining ip and port.
// We prepare this appended string here because we need to use it for finding elemends from the maps
// for validation purposes whenever a message is received.
uniqueid_.append(address_).append(":").append(std::to_string(port_));
}
} // namespace sock

17
src/sock/socket_session.hpp
View File

@@ -3,6 +3,7 @@
#include <string>
#include <vector>
#include <bitset>
#include <boost/asio.hpp>
#include <boost/beast.hpp>
#include "socket_session_handler.hpp"
@@ -44,15 +45,29 @@ class socket_session : public std::enable_shared_from_this<socket_session>
public:
socket_session(websocket::stream<beast::tcp_stream> &websocket, socket_session_handler &sess_handler);
// The port of the remote party.
std::uint16_t port_;
// The IP address of the remote party.
std::string address_;
// The unique identifier of the remote party (format <ip>:<port>).
std::string uniqueid_;
// The set of util::SESSION_FLAG enum flags that will be set by user-code of this calss.
// We mainly use this to store contexual information about this session based on the use case.
// Setting and reading flags to this is completely managed by user-code.
std::bitset<8> flags_;
void server_run(const std::uint16_t port, const std::string &address);
void client_run(const std::uint16_t port, const std::string &address, error ec);
//Used to send message through an active websocket connection
// Used to send message through an active websocket connection.
void send(std::shared_ptr<std::string const> const &ss);
// When called, initializes the unique id string for this session.
void init_uniqueid();
void close();
};
} // namespace sock

127
src/usr/user_session_handler.cpp Normal file
View File

@@ -0,0 +1,127 @@
#include <iostream>
#include <string>
#include <boost/beast/core.hpp>
#include <boost/beast/websocket.hpp>
#include <boost/asio.hpp>
#include "../util.hpp"
#include "../sock/socket_session.hpp"
#include "usr.hpp"
#include "user_session_handler.hpp"
namespace net = boost::asio;
namespace beast = boost::beast;
using tcp = net::ip::tcp;
using error = boost::system::error_code;
using namespace std;
namespace usr
{
/**
* This gets hit every time a client connects to HP via the public port (configured in contract config).
*/
void user_session_handler::on_connect(sock::socket_session *session)
{
cout << "User client connected " << session->address_ << ":" << session->port_ << endl;
// As a soon as a user conntects, we issue them a challenge message. We remember the
// challenge we issued and later verifies the user's response with it.
string msg;
string challengeb64;
usr::create_user_challenge(msg, challengeb64);
// We init the session unique id to associate with the challenge.
session->init_uniqueid();
// Create an entry in pending_challenges for later tracking upon challenge response.
usr::pending_challenges[session->uniqueid_] = challengeb64;
// TODO: This needs to be reviewed to optimise passing the message.
session->send(make_shared<string>(msg));
// Set the challenge-issued flag to help later checks in on_message.
session->flags_.set(util::SESSION_FLAG::USER_CHALLENGE_ISSUED);
}
/**
* This gets hit every time we receive some data from a client connected to the HP public port.
*/
void user_session_handler::on_message(sock::socket_session *session, const std::string &message)
{
// First check whether this session is pending challenge.
// Meaning we have previously issued a challenge to the client,
if (session->flags_[util::SESSION_FLAG::USER_CHALLENGE_ISSUED])
{
// The received message must be the challenge response. We need to verify it.
auto itr = usr::pending_challenges.find(session->uniqueid_);
if (itr != usr::pending_challenges.end())
{
string userpubkey;
const string &original_challenge = itr->second;
if (usr::verify_user_challenge_response(message, original_challenge, userpubkey) == 0)
{
// Challenge verification successful.
// Promote the connection from pending-challenges to authenticated users.
session->flags_.reset(util::SESSION_FLAG::USER_CHALLENGE_ISSUED); // Clear challenge-issued flag
session->flags_.set(util::SESSION_FLAG::USER_AUTHED); // Set the user-authed flag
usr::pending_challenges.erase(session->uniqueid_); // Remove the stored challenge
usr::add_user(session->uniqueid_, userpubkey); // Add the user to the global authed user list
cout << "User connection " << session->uniqueid_ << " authenticated.\n";
return;
}
else
{
cout << "Challenge verification failed " << session->uniqueid_ << endl;
}
}
}
// Check whether this session belongs to an authenticated (challenge-verified) user.
else if (session->flags_[util::SESSION_FLAG::USER_AUTHED])
{
// Check whether this user is among authenticated users
// and perform authenticated msg processing.
auto itr = usr::users.find(session->uniqueid_);
if (itr != usr::users.end())
{
// This is an authed user.
// Write the message to the user input pipe. SC will read from this pipe when it executes.
const contract_user &user = itr->second;
write(user.inpipe[1], message.data(), message.length());
cout << "User " << user.pubkeyb64 << " wrote " << message.length() << " bytes to contract input.\n";
return;
}
}
// If for any reason we reach this point, we should drop the connection.
session->close();
cout << "Dropped the user connection " << session->address_ << ":" << session->port_ << endl;
}
/**
* This gets hit every time a client disconnects from the HP public port.
*/
void user_session_handler::on_close(sock::socket_session *session)
{
// Cleanup any resources related to this session.
// Session is awaiting challenge response.
if (session->flags_[util::SESSION_FLAG::USER_CHALLENGE_ISSUED])
{
usr::pending_challenges.erase(session->uniqueid_);
}
// Session belongs to an authed user.
else if (session->flags_[util::SESSION_FLAG::USER_AUTHED])
{
usr::remove_user(session->uniqueid_);
}
cout << "User disconnected " << session->uniqueid_ << endl;
}
} // namespace usr

18
src/usr/user_session_handler.hpp Normal file
View File

@@ -0,0 +1,18 @@
#include <boost/beast/core.hpp>
#include "../sock/socket_session_handler.hpp"
#include "../sock/socket_session.hpp"
using error = boost::system::error_code;
namespace usr
{
class user_session_handler : public sock::socket_session_handler
{
public:
void on_connect(sock::socket_session *session);
void on_message(sock::socket_session *session, const std::string &message);
void on_close(sock::socket_session *session);
};
}

177
src/usr/usr.cpp
View File

@@ -4,14 +4,17 @@
#include <sys/ioctl.h>
#include <sys/types.h>
#include <rapidjson/document.h>
#include <rapidjson/schema.h>
#include <rapidjson/stringbuffer.h>
#include <rapidjson/writer.h>
#include <sodium.h>
#include <boost/thread/thread.hpp>
#include "../sock/socket_server.hpp"
#include "../sock/socket_session_handler.hpp"
#include "../util.hpp"
#include "../conf.hpp"
#include "../crypto.hpp"
#include "usr.hpp"
#include "user_session_handler.hpp"
using namespace std;
using namespace util;
@@ -22,13 +25,44 @@ namespace usr
/**
* Global user list. (Exposed to other sub systems)
* Map key: User socket session id (<ip:port>)
*/
map<string, contract_user> users;
/**
* Json schema doc used for user challenge-response json validation.
* Keep track of verification-pending challenges issued to newly connected users.
* Map key: User socket session id (<ip:port>)
*/
Document challenge_response_schemadoc;
map<string, string> pending_challenges;
/**
* User session handler instance. This instance's methods will be fired for any user socket activity.
*/
user_session_handler global_usr_session_handler;
/**
* The IO context used by the websocket listener. (not exposed out of this namespace)
*/
net::io_context ioc;
/**
* The thread the websocket lsitener is running on. (not exposed out of this namespace)
*/
thread listener_thread;
// Challenge response fields.
// These fields are used on challenge response validation.
static const char* CHALLENGE_RESP_TYPE = "type";
static const char* CHALLENGE_RESP_CHALLENGE = "challenge";
static const char* CHALLENGE_RESP_SIG = "sig";
static const char* CHALLENGE_RESP_PUBKEY = "pubkey";
// Message type for the user challenge.
static const char *CHALLENGE_MSGTYPE = "public_challenge";
// Message type for the user challenge response.
static const char *CHALLENGE_RESP_MSGTYPE = "challenge_response";
// Length of user random challenge bytes.
static const int CHALLENGE_LEN = 16;
/**
* Initializes the usr subsystem. Must be called once during application startup.
@@ -36,21 +70,8 @@ Document challenge_response_schemadoc;
*/
int init()
{
//We initialize the response schema doc from this json string so we can
//use the schema repeatedly for all challenge-response validations.
const char *challenge_response_schema =
"{"
"\"type\": \"object\","
"\"required\": [ \"type\", \"challenge\", \"sig\", \"pubkey\" ],"
"\"properties\": {"
"\"type\": { \"type\": \"string\" },"
"\"challenge\": { \"type\": \"string\" },"
"\"sig\": { \"type\": \"string\" },"
"\"pubkey\": { \"type\": \"string\" }"
"}"
"}";
challenge_response_schemadoc.Parse(challenge_response_schema);
// Start listening for incoming user connections.
start_listening();
return 0;
}
@@ -72,31 +93,31 @@ int init()
void create_user_challenge(string &msg, string &challengeb64)
{
//Use libsodium to generate the random challenge bytes.
unsigned char challenge_bytes[user_challenge_len];
randombytes_buf(challenge_bytes, user_challenge_len);
unsigned char challenge_bytes[CHALLENGE_LEN];
randombytes_buf(challenge_bytes, CHALLENGE_LEN);
//We pass the b64 challenge string separately to the caller even though
//we also include it in the challenge msg as well.
base64_encode(challenge_bytes, user_challenge_len, challengeb64);
base64_encode(challenge_bytes, CHALLENGE_LEN, challengeb64);
//Construct the challenge msg json.
Document d;
d.SetObject();
Document::AllocatorType &allocator = d.GetAllocator();
d.AddMember("version", StringRef(util::hp_version), allocator);
d.AddMember("type", StringRef(msg_public_challenge), allocator);
d.AddMember("challenge", StringRef(challengeb64.data()), allocator);
// We do not use RapidJson here in favour of performance because this is a simple json message.
StringBuffer buffer;
Writer<StringBuffer> writer(buffer);
d.Accept(writer);
msg = buffer.GetString();
// Since we know the rough size of the challenge massage we reserve adequate amount for the holder.
// Only Hot Pocket version number is variable length. Therefore message size is roughly 95 bytes
// so allocating 128bits for heap padding.
msg.reserve(128);
msg.append("{\"version\":\"")
.append(util::HP_VERSION)
.append("\",\"type\":\"public_challenge\",\"challenge\":\"")
.append(challengeb64)
.append("\"}");
}
/**
* Verifies the user challenge response with the original challenge issued to the user
* and the user public contained in the response.
* and the user public key contained in the response.
*
* @param response The response bytes to verify. This will be parsed as json.
* Accepted response format:
@@ -107,42 +128,52 @@ void create_user_challenge(string &msg, string &challengeb64)
* "pubkey": "<Base64 public key of the user>"
* }
* @param original_challenge The original base64 challenge string issued to the user.
* @param extracted_pubkeyb64 The public key extracted from the response.
* @return 0 if challenge response is verified. -1 if challenge not met or an error occurs.
*/
int verify_user_challenge_response(const string &response, const string &original_challenge, string &extracted_pubkeyb64)
{
//We load response raw bytes into json document and validate the schema.
// We load response raw bytes into json document.
Document d;
d.Parse(response.data());
//Validate json scheme.
//This has a cost. But we have to do this first. Otherwise field value
//extraction will fail in subsequent steps if the message is malformed.
SchemaDocument schema(challenge_response_schemadoc);
SchemaValidator validator(schema);
if (!d.Accept(validator))
if (d.HasParseError())
{
cerr << "User challenge resposne schema invalid.\n";
cerr << "Challenge response json parser error.\n";
return -1;
}
//Validate msg type.
if (d["type"] != msg_challenge_resp)
// Validate msg type.
if (!d.HasMember(CHALLENGE_RESP_TYPE) || d[CHALLENGE_RESP_TYPE] != CHALLENGE_RESP_MSGTYPE)
{
cerr << "User challenge response type invalid. 'challenge_response' expeced.\n";
cerr << "User challenge response type invalid. 'challenge_response' expected.\n";
return -1;
}
//Compare the response challenge string with the original issued challenge.
if (d["challenge"] != original_challenge.data())
// Compare the response challenge string with the original issued challenge.
if (!d.HasMember(CHALLENGE_RESP_CHALLENGE) || d[CHALLENGE_RESP_CHALLENGE] != original_challenge.data())
{
cerr << "User challenge resposne: challenge mismatch.\n";
cerr << "User challenge response challenge invalid.\n";
return -1;
}
//Verify the challenge signature. We do this last due to signature verification cost.
string sigb64 = d["sig"].GetString();
extracted_pubkeyb64 = d["pubkey"].GetString();
// Check for the 'sig' field existence.
if (!d.HasMember(CHALLENGE_RESP_SIG) || !d[CHALLENGE_RESP_SIG].IsString())
{
cerr << "User challenge response signature invalid.\n";
return -1;
}
// Check for the 'pubkey' field existence.
if (!d.HasMember(CHALLENGE_RESP_PUBKEY) || !d[CHALLENGE_RESP_PUBKEY].IsString())
{
cerr << "User challenge response public key invalid.\n";
return -1;
}
// Verify the challenge signature. We do this last due to signature verification cost.
string sigb64 = d[CHALLENGE_RESP_SIG].GetString();
extracted_pubkeyb64 = d[CHALLENGE_RESP_PUBKEY].GetString();
if (crypto::verify_b64(original_challenge, sigb64, extracted_pubkeyb64) != 0)
{
cerr << "User challenge response signature verification failed.\n";
@@ -153,16 +184,18 @@ int verify_user_challenge_response(const string &response, const string &origina
}
/**
* Adds the specified public key into the global user list.
* Adds the user denoted by specified session id and public key to the global authed user list.
* This should get called after the challenge handshake is verified.
*
* @param sessionid User socket session id.
* @param pubkeyb64 User's base64 public key.
* @return 0 on successful additions. -1 on failure.
*/
int add_user(const string &pubkeyb64)
int add_user(const string &sessionid, const string &pubkeyb64)
{
if (users.count(pubkeyb64) == 1)
if (users.count(sessionid) == 1)
{
cerr << pubkeyb64 << " already exist. Cannot add user.\n";
cerr << sessionid << " already exist. Cannot add user.\n";
return -1;
}
@@ -172,7 +205,7 @@ int add_user(const string &pubkeyb64)
int inpipe[2];
if (pipe(inpipe) != 0)
{
cerr << "User in pipe creation failed. pubkey:" << pubkeyb64 << endl;
cerr << "User in pipe creation failed. sessionid:" << sessionid << endl;
return -1;
}
@@ -180,7 +213,7 @@ int add_user(const string &pubkeyb64)
int outpipe[2];
if (pipe(outpipe) != 0)
{
cerr << "User out pipe creation failed. pubkey:" << pubkeyb64 << endl;
cerr << "User out pipe creation failed. sessionid:" << sessionid << endl;
//We need to close 'inpipe' in case outpipe failed.
close(inpipe[0]);
@@ -189,7 +222,7 @@ int add_user(const string &pubkeyb64)
return -1;
}
users.insert(pair<string, contract_user>(pubkeyb64, contract_user(pubkeyb64, inpipe, outpipe)));
users.emplace(sessionid, contract_user(pubkeyb64, inpipe, outpipe));
return 0;
}
@@ -199,16 +232,17 @@ int add_user(const string &pubkeyb64)
*
* @return 0 on successful removals. -1 on failure.
*/
int remove_user(const string &pubkeyb64)
int remove_user(const string &sessionid)
{
if (users.count(pubkeyb64) == 0)
auto itr = users.find(sessionid);
if (itr == users.end())
{
cerr << pubkeyb64 << " does not exist. Cannot remove user.\n";
cerr << sessionid << " does not exist. Cannot remove user.\n";
return -1;
}
auto itr = users.find(pubkeyb64);
contract_user user = itr->second;
const contract_user &user = itr->second;
//Close the User <--> SC I/O pipes.
close(user.inpipe[0]);
@@ -236,7 +270,7 @@ int read_contract_user_outputs()
//Currently this is sequential for simplicity which will not scale well
//when there are large number of users connected to the same HP node.
for (auto &[pk, user] : users)
for (auto &[sid, user] : users)
{
int fdout = user.outpipe[0];
int bytes_available = 0;
@@ -257,4 +291,21 @@ int read_contract_user_outputs()
return 0;
}
/**
* Starts listening for incoming user websocket connections.
*/
void start_listening()
{
auto address = net::ip::make_address(conf::cfg.listenip);
make_shared<sock::socket_server>(
ioc,
tcp::endpoint{address, conf::cfg.pubport},
global_usr_session_handler)
->run();
listener_thread = thread([&] { ioc.run(); });
cout << "Started listening for incoming user connections...\n";
}
} // namespace usr

25
src/usr/usr.hpp
View File

@@ -15,32 +15,35 @@ using namespace util;
namespace usr
{
// Length of user random challenge bytes.
static const int user_challenge_len = 16;
// Message type for the user challenge.
static const char *msg_public_challenge = "public_challenge";
// Message type for the user challenge response.
static const char *msg_challenge_resp = "challenge_response";
/**
* Global authenticated (challenge-verified) user list.
*/
extern map<string, contract_user> users;
/**
* Keep track of verification-pending challenges issued to newly connected users.
*/
extern map<string, string> pending_challenges;
/**
* Keep track of verification-pending challenges issued to newly connected users.
*/
extern map<string, string> pending_challenges;
int init();
void create_user_challenge(string &msg, string &challengeb64);
int verify_user_challenge_response(const string &response, const string &original_challenge, string &extracted_pubkey);
int add_user(const string &pubkeyb64);
int add_user(const string &sessionid, const string &pubkeyb64);
int remove_user(const string &pubkeyb64);
int remove_user(const string &sessionid);
int read_contract_user_outputs();
void start_listening();
} // namespace usr
#endif

4
src/util.cpp
View File

@@ -30,7 +30,9 @@ int base64_encode(const unsigned char *bin, size_t bin_len, string &encoded_stri
return -1;
// Assign the encoded char* onto the provided string reference.
encoded_string = string(base64chars, base64_len);
// "base64_len - 1" because sodium include '\0' in the calculated base64 length.
// Therefore we need to omit it when initializing the std::string.
encoded_string = string(base64chars, base64_len - 1);
return 0;
}

17
src/util.hpp
View File

@@ -13,14 +13,25 @@ namespace util
{
// Hot Pocket version. Displayed on 'hotpocket version' and written to new contract configs.
static const char *hp_version = "0.1";
static const char *HP_VERSION = "0.1";
// Minimum compatible contract config version (this will be used to validate contract configs)
static const char *min_contract_version = "0.1";
static const char *MIN_CONTRACT_VERSION = "0.1";
// Minimum compatible peer message version (this will be used to accept/reject incoming peer connections)
// (Keeping this as int for effcient msg payload and comparison)
static const int min_peermsg_version = 1;
static const int MIN_PEERMSG_VERSION = 1;
/**
* Set of flags used to mark status information on the session.
* usr and p2p subsystems makes use of this to mark status information of user and peer sessions.
* Set flags are stored in 'flags_' bitset.
*/
enum SESSION_FLAG
{
USER_CHALLENGE_ISSUED = 0,
USER_AUTHED = 1
};
/**
* Holds information about an authenticated (challenge-verified) user