commit/bbdaddc33eb0f97c35ded4b2435a8918befd1c49/Handshake_8cpp_source.html

#include <xrpld/app/ledger/LedgerMaster.h>

#include <xrpld/app/main/Application.h>

#include <xrpld/overlay/detail/Handshake.h>


#include <xrpl/basics/base64.h>

#include <xrpl/beast/core/LexicalCast.h>

#include <xrpl/beast/rfc2616.h>

#include <xrpl/protocol/digest.h>


#include <boost/regex.hpp>


#include <algorithm>


// VFALCO Shouldn't we have to include the OpenSSL

// headers or something for SSL_get_finished?


namespace ripple {


std::optional<std::string>


getFeatureValue(

    boost::beast::http::fields const& headers,

    std::string const& feature)

{

    auto const header = headers.find("X-Protocol-Ctl");

    if (header == headers.end())

        return {};

    boost::smatch match;

    boost::regex rx(feature + "=([^;\\s]+)");

    std::string const allFeatures(header->value());

    if (boost::regex_search(allFeatures, match, rx))

        return {match[1]};

    return {};

}


bool


isFeatureValue(

    boost::beast::http::fields const& headers,

    std::string const& feature,

    std::string const& value)

{

    if (auto const fvalue = getFeatureValue(headers, feature))

        return beast::rfc2616::token_in_list(fvalue.value(), value);


    return false;

}


bool


featureEnabled(

    boost::beast::http::fields const& headers,

    std::string const& feature)

{

    return isFeatureValue(headers, feature, "1");

}


std::string


makeFeaturesRequestHeader(

    bool comprEnabled,

    bool ledgerReplayEnabled,

    bool txReduceRelayEnabled,

    bool vpReduceRelayEnabled)

{

    std::stringstream str;

    if (comprEnabled)

        str << FEATURE_COMPR << "=lz4" << DELIM_FEATURE;

    if (ledgerReplayEnabled)

        str << FEATURE_LEDGER_REPLAY << "=1" << DELIM_FEATURE;

    if (txReduceRelayEnabled)

        str << FEATURE_TXRR << "=1" << DELIM_FEATURE;

    if (vpReduceRelayEnabled)

        str << FEATURE_VPRR << "=1" << DELIM_FEATURE;

    return str.str();

}


std::string


makeFeaturesResponseHeader(

    http_request_type const& headers,

    bool comprEnabled,

    bool ledgerReplayEnabled,

    bool txReduceRelayEnabled,

    bool vpReduceRelayEnabled)

{

    std::stringstream str;

    if (comprEnabled && isFeatureValue(headers, FEATURE_COMPR, "lz4"))

        str << FEATURE_COMPR << "=lz4" << DELIM_FEATURE;

    if (ledgerReplayEnabled && featureEnabled(headers, FEATURE_LEDGER_REPLAY))

        str << FEATURE_LEDGER_REPLAY << "=1" << DELIM_FEATURE;

    if (txReduceRelayEnabled && featureEnabled(headers, FEATURE_TXRR))

        str << FEATURE_TXRR << "=1" << DELIM_FEATURE;

    if (vpReduceRelayEnabled && featureEnabled(headers, FEATURE_VPRR))

        str << FEATURE_VPRR << "=1" << DELIM_FEATURE;

    return str.str();

}


static std::optional<base_uint<512>>


hashLastMessage(SSL const* ssl, size_t (*get)(const SSL*, void*, size_t))

{

    constexpr std::size_t sslMinimumFinishedLength = 12;


    unsigned char buf[1024];

    size_t len = get(ssl, buf, sizeof(buf));


    if (len < sslMinimumFinishedLength)

        return std::nullopt;


    sha512_hasher h;


    base_uint<512> cookie;

    SHA512(buf, len, cookie.data());

    return cookie;

}


std::optional<uint256>


makeSharedValue(stream_type& ssl, beast::Journal journal)

{

    auto const cookie1 = hashLastMessage(ssl.native_handle(), SSL_get_finished);

    if (!cookie1)

    {

        JLOG(journal.error()) << "Cookie generation: local setup not complete";

        return std::nullopt;

    }


    auto const cookie2 =

        hashLastMessage(ssl.native_handle(), SSL_get_peer_finished);

    if (!cookie2)

    {

        JLOG(journal.error()) << "Cookie generation: peer setup not complete";

        return std::nullopt;

    }


    auto const result = (*cookie1 ^ *cookie2);


    // Both messages hash to the same value and the cookie

    // is 0. Don't allow this.

    if (result == beast::zero)

    {

        JLOG(journal.error())

            << "Cookie generation: identical finished messages";

        return std::nullopt;

    }


    return sha512Half(Slice(result.data(), result.size()));

}


void


buildHandshake(

    boost::beast::http::fields& h,

    ripple::uint256 const& sharedValue,

    std::optional<std::uint32_t> networkID,

    beast::IP::Address public_ip,

    beast::IP::Address remote_ip,

    Application& app)

{

    if (networkID)

    {

        // The network identifier, if configured, can be used to specify

        // what network we intend to connect to and detect if the remote

        // end connects to the same network.

        h.insert("Network-ID", std::to_string(*networkID));

    }


    h.insert(

        "Network-Time",

        std::to_string(app.timeKeeper().now().time_since_epoch().count()));


    h.insert(

        "Public-Key",

        toBase58(TokenType::NodePublic, app.nodeIdentity().first));


    {

        auto const sig = signDigest(

            app.nodeIdentity().first, app.nodeIdentity().second, sharedValue);

        h.insert("Session-Signature", base64_encode(sig.data(), sig.size()));

    }


    h.insert("Instance-Cookie", std::to_string(app.instanceID()));


    if (!app.config().SERVER_DOMAIN.empty())

        h.insert("Server-Domain", app.config().SERVER_DOMAIN);


    if (beast::IP::is_public(remote_ip))

        h.insert("Remote-IP", remote_ip.to_string());


    if (!public_ip.is_unspecified())

        h.insert("Local-IP", public_ip.to_string());


    if (auto const cl = app.getLedgerMaster().getClosedLedger())

    {

        h.insert("Closed-Ledger", strHex(cl->info().hash));

        h.insert("Previous-Ledger", strHex(cl->info().parentHash));

    }

}


PublicKey


verifyHandshake(

    boost::beast::http::fields const& headers,

    ripple::uint256 const& sharedValue,

    std::optional<std::uint32_t> networkID,

    beast::IP::Address public_ip,

    beast::IP::Address remote,

    Application& app)

{

    if (auto const iter = headers.find("Server-Domain"); iter != headers.end())

    {

        if (!isProperlyFormedTomlDomain(iter->value()))

            throw std::runtime_error("Invalid server domain");

    }


    if (auto const iter = headers.find("Network-ID"); iter != headers.end())

    {

        std::uint32_t nid;


        if (!beast::lexicalCastChecked(nid, iter->value()))

            throw std::runtime_error("Invalid peer network identifier");


        if (networkID && nid != *networkID)

            throw std::runtime_error("Peer is on a different network");

    }


    if (auto const iter = headers.find("Network-Time"); iter != headers.end())

    {

        auto const netTime = [str = iter->value()]() -> TimeKeeper::time_point {

            TimeKeeper::duration::rep val;


            if (beast::lexicalCastChecked(val, str))

                return TimeKeeper::time_point{TimeKeeper::duration{val}};


            // It's not an error for the header field to not be present but if

            // it is present and it contains junk data, that is an error.

            throw std::runtime_error("Invalid peer clock timestamp");

        }();


        using namespace std::chrono;


        auto const ourTime = app.timeKeeper().now();

        auto const tolerance = 20s;


        // We can't blindly "return a-b;" because TimeKeeper::time_point

        // uses an unsigned integer for representing durations, which is

        // a problem when trying to subtract time points.

        auto calculateOffset = [](TimeKeeper::time_point a,

                                  TimeKeeper::time_point b) {

            if (a > b)

                return duration_cast<std::chrono::seconds>(a - b);

            return -duration_cast<std::chrono::seconds>(b - a);

        };


        auto const offset = calculateOffset(netTime, ourTime);


        if (abs(offset) > tolerance)

            throw std::runtime_error("Peer clock is too far off");

    }


    PublicKey const publicKey = [&headers] {

        if (auto const iter = headers.find("Public-Key"); iter != headers.end())

        {

            auto pk =

                parseBase58<PublicKey>(TokenType::NodePublic, iter->value());


            if (pk)

            {

                if (publicKeyType(*pk) != KeyType::secp256k1)

                    throw std::runtime_error("Unsupported public key type");


                return *pk;

            }

        }


        throw std::runtime_error("Bad node public key");

    }();


    // This check gets two birds with one stone:

    //

    // 1) it verifies that the node we are talking to has access to the

    //    private key corresponding to the public node identity it claims.

    // 2) it verifies that our SSL session is end-to-end with that node

    //    and not through a proxy that establishes two separate sessions.

    {

        auto const iter = headers.find("Session-Signature");


        if (iter == headers.end())

            throw std::runtime_error("No session signature specified");


        auto sig = base64_decode(iter->value());


        if (!verifyDigest(publicKey, sharedValue, makeSlice(sig), false))

            throw std::runtime_error("Failed to verify session");

    }


    if (publicKey == app.nodeIdentity().first)

        throw std::runtime_error("Self connection");


    if (auto const iter = headers.find("Local-IP"); iter != headers.end())

    {

        boost::system::error_code ec;

        auto const local_ip =

            boost::asio::ip::make_address(std::string_view(iter->value()), ec);


        if (ec)

            throw std::runtime_error("Invalid Local-IP");


        if (beast::IP::is_public(remote) && remote != local_ip)

            throw std::runtime_error(

                "Incorrect Local-IP: " + remote.to_string() + " instead of " +

                local_ip.to_string());

    }


    if (auto const iter = headers.find("Remote-IP"); iter != headers.end())

    {

        boost::system::error_code ec;

        auto const remote_ip =

            boost::asio::ip::make_address(std::string_view(iter->value()), ec);


        if (ec)

            throw std::runtime_error("Invalid Remote-IP");


        if (beast::IP::is_public(remote) &&

            !beast::IP::is_unspecified(public_ip))

        {

            // We know our public IP and peer reports our connection came

            // from some other IP.

            if (remote_ip != public_ip)

                throw std::runtime_error(

                    "Incorrect Remote-IP: " + public_ip.to_string() +

                    " instead of " + remote_ip.to_string());

        }

    }


    return publicKey;

}


auto


makeRequest(

    bool crawlPublic,

    bool comprEnabled,

    bool ledgerReplayEnabled,

    bool txReduceRelayEnabled,

    bool vpReduceRelayEnabled) -> request_type

{

    request_type m;

    m.method(boost::beast::http::verb::get);

    m.target("/");

    m.version(11);

    m.insert("User-Agent", BuildInfo::getFullVersionString());

    m.insert("Upgrade", supportedProtocolVersions());

    m.insert("Connection", "Upgrade");

    m.insert("Connect-As", "Peer");

    m.insert("Crawl", crawlPublic ? "public" : "private");

    m.insert(

        "X-Protocol-Ctl",

        makeFeaturesRequestHeader(

            comprEnabled,

            ledgerReplayEnabled,

            txReduceRelayEnabled,

            vpReduceRelayEnabled));

    return m;

}


http_response_type


makeResponse(

    bool crawlPublic,

    http_request_type const& req,

    beast::IP::Address public_ip,

    beast::IP::Address remote_ip,

    uint256 const& sharedValue,

    std::optional<std::uint32_t> networkID,

    ProtocolVersion protocol,

    Application& app)

{

    http_response_type resp;

    resp.result(boost::beast::http::status::switching_protocols);

    resp.version(req.version());

    resp.insert("Connection", "Upgrade");

    resp.insert("Upgrade", to_string(protocol));

    resp.insert("Connect-As", "Peer");

    resp.insert("Server", BuildInfo::getFullVersionString());

    resp.insert("Crawl", crawlPublic ? "public" : "private");

    resp.insert(

        "X-Protocol-Ctl",

        makeFeaturesResponseHeader(

            req,

            app.config().COMPRESSION,

            app.config().LEDGER_REPLAY,

            app.config().TX_REDUCE_RELAY_ENABLE,

            app.config().VP_REDUCE_RELAY_BASE_SQUELCH_ENABLE));


    buildHandshake(resp, sharedValue, networkID, public_ip, remote_ip, app);


    return resp;

}


}  // namespace ripple

algorithm

std::string

std::string_view

std::stringstream

beast::Journal
A generic endpoint for log messages.
Definition Journal.h:41

beast::Journal::error
Stream error() const
Definition Journal.h:327

beast::abstract_clock< NetClock >::time_point
typename Clock::time_point time_point
Definition abstract_clock.h:41

beast::abstract_clock< NetClock >::duration
typename Clock::duration duration
Definition abstract_clock.h:40

ripple::Application
Definition Application.h:95

ripple::Application::config
virtual Config & config()=0

ripple::Application::timeKeeper
virtual TimeKeeper & timeKeeper()=0

ripple::Application::getLedgerMaster
virtual LedgerMaster & getLedgerMaster()=0

ripple::Application::instanceID
virtual std::uint64_t instanceID() const =0
Returns a 64-bit instance identifier, generated at startup.

ripple::Application::nodeIdentity
virtual std::pair< PublicKey, SecretKey > const & nodeIdentity()=0

ripple::Config::VP_REDUCE_RELAY_BASE_SQUELCH_ENABLE
bool VP_REDUCE_RELAY_BASE_SQUELCH_ENABLE
Definition Config.h:229

ripple::Config::LEDGER_REPLAY
bool LEDGER_REPLAY
Definition Config.h:204

ripple::Config::TX_REDUCE_RELAY_ENABLE
bool TX_REDUCE_RELAY_ENABLE
Definition Config.h:239

ripple::Config::SERVER_DOMAIN
std::string SERVER_DOMAIN
Definition Config.h:259

ripple::Config::COMPRESSION
bool COMPRESSION
Definition Config.h:201

ripple::LedgerMaster::getClosedLedger
std::shared_ptr< Ledger const > getClosedLedger()
Definition LedgerMaster.h:60

ripple::PublicKey
A public key.
Definition PublicKey.h:43

ripple::Slice
An immutable linear range of bytes.
Definition Slice.h:27

ripple::TimeKeeper::now
time_point now() const override
Returns the current time, using the server's clock.
Definition TimeKeeper.h:45

ripple::base_uint
Integers of any length that is a multiple of 32-bits.
Definition base_uint.h:67

ripple::base_uint::data
pointer data()
Definition base_uint.h:106

std::string::empty
T empty(T... args)

std::uint32_t

std::is_same_v
T is_same_v

beast::IP::is_public
bool is_public(Address const &addr)
Returns true if the address is a public routable address.
Definition IPAddress.h:59

beast::IP::is_unspecified
bool is_unspecified(Address const &addr)
Returns true if the address is unspecified.
Definition IPAddress.h:38

beast::IP::Address
boost::asio::ip::address Address
Definition IPAddress.h:20

beast::rfc2616::token_in_list
bool token_in_list(boost::string_ref const &value, boost::string_ref const &token)
Returns true if the specified token exists in the list.
Definition rfc2616.h:357

beast::lexicalCastChecked
bool lexicalCastChecked(Out &out, In in)
Intelligently convert from one type to another.
Definition LexicalCast.h:181

protocol
Definition ValidatorList.h:19

ripple::BuildInfo::getFullVersionString
std::string const & getFullVersionString()
Full server version string.
Definition BuildInfo.cpp:62

ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:6

ripple::stream_type
boost::beast::ssl_stream< socket_type > stream_type
Definition Handshake.h:23

ripple::toBase58
std::string toBase58(AccountID const &v)
Convert AccountID to base58 checked string.
Definition AccountID.cpp:95

ripple::makeFeaturesResponseHeader
std::string makeFeaturesResponseHeader(http_request_type const &headers, bool comprEnabled, bool ledgerReplayEnabled, bool txReduceRelayEnabled, bool vpReduceRelayEnabled)
Make response header X-Protocol-Ctl value with supported features.
Definition Handshake.cpp:75

ripple::TokenType::NodePublic
@ NodePublic

ripple::verifyDigest
bool verifyDigest(PublicKey const &publicKey, uint256 const &digest, Slice const &sig, bool mustBeFullyCanonical=true) noexcept
Verify a secp256k1 signature on the digest of a message.
Definition PublicKey.cpp:220

ripple::DELIM_FEATURE
static constexpr char DELIM_FEATURE[]
Definition Handshake.h:129

ripple::http_response_type
boost::beast::http::response< boost::beast::http::dynamic_body > http_response_type
Definition Handoff.h:17

ripple::buildHandshake
void buildHandshake(boost::beast::http::fields &h, ripple::uint256 const &sharedValue, std::optional< std::uint32_t > networkID, beast::IP::Address public_ip, beast::IP::Address remote_ip, Application &app)
Insert fields headers necessary for upgrading the link to the peer protocol.
Definition Handshake.cpp:159

ripple::FEATURE_COMPR
static constexpr char FEATURE_COMPR[]
Definition Handshake.h:122

ripple::makeFeaturesRequestHeader
std::string makeFeaturesRequestHeader(bool comprEnabled, bool ledgerReplayEnabled, bool txReduceRelayEnabled, bool vpReduceRelayEnabled)
Make request header X-Protocol-Ctl value with supported features.
Definition Handshake.cpp:56

ripple::base64_decode
std::string base64_decode(std::string_view data)
Definition libxrpl/basics/base64.cpp:226

ripple::makeResponse
http_response_type makeResponse(bool crawlPublic, http_request_type const &req, beast::IP::Address public_ip, beast::IP::Address remote_ip, uint256 const &sharedValue, std::optional< std::uint32_t > networkID, ProtocolVersion protocol, Application &app)
Make http response.
Definition Handshake.cpp:373

ripple::FEATURE_LEDGER_REPLAY
static constexpr char FEATURE_LEDGER_REPLAY[]
Definition Handshake.h:128

ripple::isFeatureValue
bool isFeatureValue(boost::beast::http::fields const &headers, std::string const &feature, std::string const &value)
Check if a feature's value is equal to the specified value.
Definition Handshake.cpp:36

ripple::makeSharedValue
std::optional< uint256 > makeSharedValue(stream_type &ssl, beast::Journal journal)
Computes a shared value based on the SSL connection state.
Definition Handshake.cpp:127

ripple::supportedProtocolVersions
std::string const & supportedProtocolVersions()
The list of all the protocol versions we support.
Definition ProtocolVersion.cpp:140

ripple::publicKeyType
std::optional< KeyType > publicKeyType(Slice const &slice)
Returns the type of public key.
Definition PublicKey.cpp:205

ripple::strHex
std::string strHex(FwdIt begin, FwdIt end)
Definition strHex.h:11

ripple::hashLastMessage
static std::optional< base_uint< 512 > > hashLastMessage(SSL const *ssl, size_t(*get)(const SSL *, void *, size_t))
Hashes the latest finished message from an SSL stream.
Definition Handshake.cpp:109

ripple::makeSlice
std::enable_if_t< std::is_same< T, char >::value||std::is_same< T, unsigned char >::value, Slice > makeSlice(std::array< T, N > const &a)
Definition Slice.h:225

ripple::KeyType::secp256k1
@ secp256k1

ripple::base64_encode
std::string base64_encode(std::uint8_t const *data, std::size_t len)
Definition libxrpl/basics/base64.cpp:217

ripple::signDigest
Buffer signDigest(PublicKey const &pk, SecretKey const &sk, uint256 const &digest)
Generate a signature for a message digest.
Definition SecretKey.cpp:211

ripple::http_request_type
boost::beast::http::request< boost::beast::http::dynamic_body > http_request_type
Definition Handoff.h:14

ripple::featureEnabled
bool featureEnabled(boost::beast::http::fields const &headers, std::string const &feature)
Check if a feature is enabled.
Definition Handshake.cpp:48

ripple::AttestationMatch::match
@ match

ripple::getFeatureValue
std::optional< std::string > getFeatureValue(boost::beast::http::fields const &headers, std::string const &feature)
Get feature's header value.
Definition Handshake.cpp:20

ripple::FEATURE_TXRR
static constexpr char FEATURE_TXRR[]
Definition Handshake.h:126

ripple::to_string
std::string to_string(base_uint< Bits, Tag > const &a)
Definition base_uint.h:611

ripple::get
T get(Section const &section, std::string const &name, T const &defaultValue=T{})
Retrieve a key/value pair from a section.
Definition BasicConfig.h:336

ripple::makeRequest
auto makeRequest(bool crawlPublic, bool comprEnabled, bool ledgerReplayEnabled, bool txReduceRelayEnabled, bool vpReduceRelayEnabled) -> request_type
Make outbound http request.
Definition Handshake.cpp:346

ripple::request_type
boost::beast::http::request< boost::beast::http::empty_body > request_type
Definition Handshake.h:25

ripple::verifyHandshake
PublicKey verifyHandshake(boost::beast::http::fields const &headers, ripple::uint256 const &sharedValue, std::optional< std::uint32_t > networkID, beast::IP::Address public_ip, beast::IP::Address remote, Application &app)
Validate header fields necessary for upgrading the link to the peer protocol.
Definition Handshake.cpp:208

ripple::isProperlyFormedTomlDomain
bool isProperlyFormedTomlDomain(std::string_view domain)
Determines if the given string looks like a TOML-file hosting domain.
Definition StringUtilities.cpp:113

ripple::sha512Half
sha512_half_hasher::result_type sha512Half(Args const &... args)
Returns the SHA512-Half of a series of objects.
Definition digest.h:205

ripple::FEATURE_VPRR
static constexpr char FEATURE_VPRR[]
Definition Handshake.h:124

ripple::abs
constexpr Number abs(Number x) noexcept
Definition Number.h:331

std::chrono

std::optional

std::pair

std::runtime_error

std::size_t

std::stringstream::str
T str(T... args)

ripple::openssl_sha512_hasher
SHA-512 digest.
Definition digest.h:52

std::to_string
T to_string(T... args)