commit/e5844a1c89267fe3f4dc50dc31dc2790ad1fb37a/ValidatorKeys_8cpp_source.html

//------------------------------------------------------------------------------

/*

    This file is part of rippled: https://github.com/ripple/rippled

    Copyright (c) 2012, 2013 Ripple Labs Inc.


    Permission to use, copy, modify, and/or distribute this software for any

    purpose  with  or without fee is hereby granted, provided that the above

    copyright notice and this permission notice appear in all copies.


    THE  SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES

    WITH  REGARD  TO  THIS  SOFTWARE  INCLUDING  ALL  IMPLIED  WARRANTIES  OF

    MERCHANTABILITY  AND  FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR

    ANY  SPECIAL ,  DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES

    WHATSOEVER  RESULTING  FROM  LOSS  OF USE, DATA OR PROFITS, WHETHER IN AN

    ACTION  OF  CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF

    OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

*/

//==============================================================================


#include <xrpld/app/misc/ValidatorKeys.h>


#include <xrpld/app/misc/Manifest.h>

#include <xrpld/core/Config.h>

#include <xrpld/core/ConfigSections.h>

#include <xrpl/basics/Log.h>

#include <xrpl/basics/base64.h>


namespace ripple {

ValidatorKeys::ValidatorKeys(Config const& config, beast::Journal j)

{

    if (config.exists(SECTION_VALIDATOR_TOKEN) &&

        config.exists(SECTION_VALIDATION_SEED))

    {

        configInvalid_ = true;

        JLOG(j.fatal()) << "Cannot specify both [" SECTION_VALIDATION_SEED

                           "] and [" SECTION_VALIDATOR_TOKEN "]";

        return;

    }


    if (config.exists(SECTION_VALIDATOR_TOKEN))

    {

        // token is non-const so it can be moved from

        if (auto token = loadValidatorToken(

                config.section(SECTION_VALIDATOR_TOKEN).lines()))

        {

            auto const pk =

                derivePublicKey(KeyType::secp256k1, token->validationSecret);

            auto const m = deserializeManifest(base64_decode(token->manifest));


            if (!m || pk != m->signingKey)

            {

                configInvalid_ = true;

                JLOG(j.fatal())

                    << "Invalid token specified in [" SECTION_VALIDATOR_TOKEN

                       "]";

            }

            else

            {

                keys.emplace(m->masterKey, pk, token->validationSecret);

                nodeID = calcNodeID(m->masterKey);

                sequence = m->sequence;

                manifest = std::move(token->manifest);

            }

        }

        else

        {

            configInvalid_ = true;

            JLOG(j.fatal())

                << "Invalid token specified in [" SECTION_VALIDATOR_TOKEN "]";

        }

    }

    else if (config.exists(SECTION_VALIDATION_SEED))

    {

        auto const seed = parseBase58<Seed>(

            config.section(SECTION_VALIDATION_SEED).lines().front());

        if (!seed)

        {

            configInvalid_ = true;

            JLOG(j.fatal())

                << "Invalid seed specified in [" SECTION_VALIDATION_SEED "]";

        }

        else

        {

            SecretKey const sk = generateSecretKey(KeyType::secp256k1, *seed);

            PublicKey const pk = derivePublicKey(KeyType::secp256k1, sk);

            keys.emplace(pk, pk, sk);

            nodeID = calcNodeID(pk);

            sequence = 0;

        }

    }

}

}  // namespace ripple

beast::Journal
A generic endpoint for log messages.
Definition: Journal.h:59

beast::Journal::fatal
Stream fatal() const
Definition: Journal.h:351

ripple::BasicConfig::exists
bool exists(std::string const &name) const
Returns true if a section with the given name exists.
Definition: BasicConfig.cpp:121

ripple::BasicConfig::section
Section & section(std::string const &name)
Returns the section with the given name.
Definition: BasicConfig.cpp:127

ripple::Config
Definition: Config.h:93

ripple::PublicKey
A public key.
Definition: PublicKey.h:62

ripple::SecretKey
A secret key.
Definition: SecretKey.h:37

ripple::Section::lines
std::vector< std::string > const & lines() const
Returns all the lines in the section.
Definition: BasicConfig.h:71

ripple::ValidatorKeys::manifest
std::string manifest
Definition: ValidatorKeys.h:64

ripple::ValidatorKeys::keys
std::optional< Keys > keys
Definition: ValidatorKeys.h:62

ripple::ValidatorKeys::nodeID
NodeID nodeID
Definition: ValidatorKeys.h:63

ripple::ValidatorKeys::sequence
std::uint32_t sequence
Definition: ValidatorKeys.h:65

ripple::ValidatorKeys::ValidatorKeys
ValidatorKeys()=delete

ripple::ValidatorKeys::configInvalid_
bool configInvalid_
Definition: ValidatorKeys.h:77

std::vector::front
T front(T... args)

ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition: algorithm.h:26

ripple::deserializeManifest
std::optional< Manifest > deserializeManifest(Slice s, beast::Journal journal)
Constructs Manifest from serialized string.
Definition: app/misc/detail/Manifest.cpp:53

ripple::base64_decode
std::string base64_decode(std::string_view data)
Definition: base64.cpp:245

ripple::derivePublicKey
PublicKey derivePublicKey(KeyType type, SecretKey const &sk)
Derive the public key from a secret key.
Definition: SecretKey.cpp:313

ripple::generateSecretKey
SecretKey generateSecretKey(KeyType type, Seed const &seed)
Generate a new secret key deterministically.
Definition: SecretKey.cpp:291

ripple::KeyType::secp256k1
@ secp256k1

ripple::calcNodeID
NodeID calcNodeID(PublicKey const &)
Calculate the 160-bit node ID from a node public key.
Definition: PublicKey.cpp:303

ripple::loadValidatorToken
std::optional< ValidatorToken > loadValidatorToken(std::vector< std::string > const &blob, beast::Journal journal)
Definition: app/misc/detail/Manifest.cpp:263