session-open-group-server/src/onion_requests.rs

use std::convert::TryInto;

use log::warn;
use serde::{Deserialize, Serialize};
use warp::{http::StatusCode, reply::Reply, reply::Response, Rejection};

use super::crypto;
use super::errors::Error;
use super::models;
use super::rpc;

#[derive(Deserialize, Serialize, Debug)]
struct OnionRequestPayload {
    pub ciphertext: Vec<u8>,
    pub metadata: OnionRequestPayloadMetadata,
}

#[derive(Deserialize, Serialize, Debug)]
struct OnionRequestPayloadMetadata {
    pub ephemeral_key: String,
}

pub async fn handle_onion_request(blob: warp::hyper::body::Bytes) -> Result<Response, Rejection> {
    let payload = parse_onion_request_payload(blob)?;
    let (plaintext, symmetric_key) = decrypt_onion_request_payload(payload)?;
    // From this point on we can wrap any error that occurs in a HTTP response that's encrypted
    // with the given symmetric key, so that the error that occurred is propagated back to the
    // client that made the onion request.
    //
    // If an error occurred before this point we'll have responded to the Service Node with a
    // unsuccessful status code, which it'll have propagated back to the client as a "Loki server
    // error" (i.e. the actual error is hidden from the client that made the onion request). This
    // is unfortunate but cannot be solved without fundamentally changing how onion requests work.
    return handle_decrypted_onion_request(&plaintext, &symmetric_key).await;
}

async fn handle_decrypted_onion_request(
    plaintext: &[u8],
    symmetric_key: &[u8],
) -> Result<Response, Rejection> {
    let rpc_call = match serde_json::from_slice(plaintext) {
        Ok(rpc_call) => rpc_call,
        Err(e) => {
            warn!("Couldn't parse RPC call from JSON: {}.", e);
            return Err(warp::reject::custom(Error::InvalidOnionRequest));
        }
    };
    // Perform the RPC call
    let result = rpc::handle_rpc_call(rpc_call)
        .await
        // Turn any error that occurred into an HTTP response
        // Unwrapping is safe because at this point any error should be caught and turned into an
        // HTTP response (i.e. an OK result)
        .or_else(super::errors::into_response)?;
    // Encrypt the HTTP response so that it's propagated back to the client that made the onion
    // request
    return encrypt_response(result, symmetric_key).await;
}

fn parse_onion_request_payload(
    blob: warp::hyper::body::Bytes,
) -> Result<OnionRequestPayload, Rejection> {
    // The encoding of an onion request looks like:
    //
    //     | 4 bytes: size N of ciphertext | N bytes: ciphertext | json as utf8 |
    if blob.len() < 4 {
        warn!("Ignoring blob of invalid size.");
        return Err(warp::reject::custom(Error::InvalidOnionRequest));
    }
    // Extract the different components
    // This is safe because we know blob has a length of at least 4 bytes
    let size = u32::from_le_bytes(blob[0..4].try_into().unwrap()) as usize;

    if blob.len() < 4 + size {
        warn!("Ignoring blob of invalid size.");
        return Err(warp::reject::custom(Error::InvalidOnionRequest));
    }

    let ciphertext: Vec<u8> = blob[4..(4 + size)].try_into().unwrap();
    let utf8_json: Vec<u8> = blob[(4 + size)..].try_into().unwrap();
    // Parse JSON
    let json = match String::from_utf8(utf8_json) {
        Ok(json) => json,
        Err(e) => {
            warn!("Couldn't parse onion request payload metadata: {}.", e);
            return Err(warp::reject::custom(Error::InvalidOnionRequest));
        }
    };
    // Parse metadata
    let metadata: OnionRequestPayloadMetadata = match serde_json::from_str(&json) {
        Ok(metadata) => metadata,
        Err(e) => {
            warn!("Couldn't parse onion request payload metadata: {}.", e);
            return Err(warp::reject::custom(Error::InvalidOnionRequest));
        }
    };
    // Check that the ephemeral public key is valid hex
    if hex::decode(&metadata.ephemeral_key).is_err() {
        warn!("Ignoring non hex encoded onion request payload ephemeral key.");
        return Err(warp::reject::custom(Error::InvalidOnionRequest));
    };
    // Return
    return Ok(OnionRequestPayload { ciphertext, metadata });
}

/// Returns the decrypted `payload.ciphertext` plus the `symmetric_key` that was used for
/// decryption if successful.
fn decrypt_onion_request_payload(
    payload: OnionRequestPayload,
) -> Result<(Vec<u8>, Vec<u8>), Rejection> {
    let ephemeral_key = hex::decode(payload.metadata.ephemeral_key).unwrap(); // Safe because it was validated in the parsing step
    let symmetric_key = crypto::get_x25519_symmetric_key(&ephemeral_key, &crypto::PRIVATE_KEY)?;
    let plaintext = crypto::decrypt_aes_gcm(&payload.ciphertext, &symmetric_key)?;
    return Ok((plaintext, symmetric_key));
}

async fn encrypt_response(response: Response, symmetric_key: &[u8]) -> Result<Response, Rejection> {
    let bytes: Vec<u8>;
    if response.status().is_success() {
        let (_, body) = response.into_parts();
        bytes = warp::hyper::body::to_bytes(body).await.unwrap().to_vec();
    } else {
        let error = models::StatusCode { status_code: response.status().as_u16() };
        bytes = serde_json::to_vec(&error).unwrap();
    }
    let ciphertext = crypto::encrypt_aes_gcm(&bytes, symmetric_key).unwrap();
    let json = base64::encode(&ciphertext);
    let response =
        warp::http::Response::builder().status(StatusCode::OK.as_u16()).body(json).into_response();
    return Ok(response);
}
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`use std::convert::TryInto;`

Use appropriate log levels 2021-04-01 00:55:47 +02:00			`use log::warn;`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`use serde::{Deserialize, Serialize};`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`use warp::{http::StatusCode, reply::Reply, reply::Response, Rejection};`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00
			`use super::crypto;`
Clean up error handling 2021-03-12 06:40:24 +01:00			`use super::errors::Error;`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`use super::models;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`use super::rpc;`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00
			`#[derive(Deserialize, Serialize, Debug)]`
Minor refactoring 2021-03-12 08:55:37 +01:00			`struct OnionRequestPayload {`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`pub ciphertext: Vec<u8>,`
test suite and cargp fmt 2021-10-08 07:56:27 +02:00			`pub metadata: OnionRequestPayloadMetadata,`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`

			`#[derive(Deserialize, Serialize, Debug)]`
Minor refactoring 2021-03-12 08:55:37 +01:00			`struct OnionRequestPayloadMetadata {`
test suite and cargp fmt 2021-10-08 07:56:27 +02:00			`pub ephemeral_key: String,`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`

Prepare for rooms implementation 2021-03-18 05:04:56 +01:00			`pub async fn handle_onion_request(blob: warp::hyper::body::Bytes) -> Result<Response, Rejection> {`
Fix remaining misleading async usage 2021-03-31 06:12:32 +02:00			`let payload = parse_onion_request_payload(blob)?;`
			`let (plaintext, symmetric_key) = decrypt_onion_request_payload(payload)?;`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`// From this point on we can wrap any error that occurs in a HTTP response that's encrypted`
			`// with the given symmetric key, so that the error that occurred is propagated back to the`
			`// client that made the onion request.`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`//`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`// If an error occurred before this point we'll have responded to the Service Node with a`
			`// unsuccessful status code, which it'll have propagated back to the client as a "Loki server`
			`// error" (i.e. the actual error is hidden from the client that made the onion request). This`
			`// is unfortunate but cannot be solved without fundamentally changing how onion requests work.`
Prepare for rooms implementation 2021-03-18 05:04:56 +01:00			`return handle_decrypted_onion_request(&plaintext, &symmetric_key).await;`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`}`

Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`async fn handle_decrypted_onion_request(`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`plaintext: &[u8],`
test suite and cargp fmt 2021-10-08 07:56:27 +02:00			`symmetric_key: &[u8],`
			`) -> Result<Response, Rejection> {`
Fix RPC call parsing 2021-03-23 01:13:32 +01:00			`let rpc_call = match serde_json::from_slice(plaintext) {`
Parse decrypted LSRPC payload 2021-03-12 03:31:55 +01:00			`Ok(rpc_call) => rpc_call,`
			`Err(e) => {`
Fix grammatically incorrect 'due to' "due to" works as an adjective that follows a noun (not verbs/verb phrases) and is being used incorrectly in all the error messages fixed here. 2021-09-14 20:56:50 +02:00			`warn!("Couldn't parse RPC call from JSON: {}.", e);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
Parse decrypted LSRPC payload 2021-03-12 03:31:55 +01:00			`}`
			`};`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`// Perform the RPC call`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`let result = rpc::handle_rpc_call(rpc_call)`
Make file handling async 2021-04-01 01:32:25 +02:00			`.await`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`// Turn any error that occurred into an HTTP response`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`// Unwrapping is safe because at this point any error should be caught and turned into an`
			`// HTTP response (i.e. an OK result)`
Make comment work with auto-formatting 2021-03-25 01:04:11 +01:00			`.or_else(super::errors::into_response)?;`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`// Encrypt the HTTP response so that it's propagated back to the client that made the onion`
			`// request`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`return encrypt_response(result, symmetric_key).await;`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`

Fix remaining misleading async usage 2021-03-31 06:12:32 +02:00			`fn parse_onion_request_payload(`
test suite and cargp fmt 2021-10-08 07:56:27 +02:00			`blob: warp::hyper::body::Bytes,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`) -> Result<OnionRequestPayload, Rejection> {`
Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			`// The encoding of an onion request looks like:`
			`//`
			`// \| 4 bytes: size N of ciphertext \| N bytes: ciphertext \| json as utf8 \|`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`if blob.len() < 4 {`
Use appropriate log levels 2021-04-01 00:55:47 +02:00			`warn!("Ignoring blob of invalid size.");`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`
			`// Extract the different components`
Debug 2021-03-12 03:21:13 +01:00			`// This is safe because we know blob has a length of at least 4 bytes`
Fix a bunch of lint warnings 2021-05-14 06:22:33 +02:00			`let size = u32::from_le_bytes(blob[0..4].try_into().unwrap()) as usize;`
Check onion request blob size 2021-06-29 02:14:19 +02:00
			`if blob.len() < 4 + size {`
			`warn!("Ignoring blob of invalid size.");`
			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
			`}`

Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`let ciphertext: Vec<u8> = blob[4..(4 + size)].try_into().unwrap();`
			`let utf8_json: Vec<u8> = blob[(4 + size)..].try_into().unwrap();`
			`// Parse JSON`
			`let json = match String::from_utf8(utf8_json) {`
			`Ok(json) => json,`
			`Err(e) => {`
Fix grammatically incorrect 'due to' "due to" works as an adjective that follows a noun (not verbs/verb phrases) and is being used incorrectly in all the error messages fixed here. 2021-09-14 20:56:50 +02:00			`warn!("Couldn't parse onion request payload metadata: {}.", e);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`
			`};`
			`// Parse metadata`
Minor refactoring 2021-03-12 08:55:37 +01:00			`let metadata: OnionRequestPayloadMetadata = match serde_json::from_str(&json) {`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`Ok(metadata) => metadata,`
			`Err(e) => {`
Fix grammatically incorrect 'due to' "due to" works as an adjective that follows a noun (not verbs/verb phrases) and is being used incorrectly in all the error messages fixed here. 2021-09-14 20:56:50 +02:00			`warn!("Couldn't parse onion request payload metadata: {}.", e);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`
			`};`
			`// Check that the ephemeral public key is valid hex`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`if hex::decode(&metadata.ephemeral_key).is_err() {`
Use appropriate log levels 2021-04-01 00:55:47 +02:00			`warn!("Ignoring non hex encoded onion request payload ephemeral key.");`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`return Err(warp::reject::custom(Error::InvalidOnionRequest));`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`};`
			`// Return`
Don't use regex 2021-03-16 04:33:55 +01:00			`return Ok(OnionRequestPayload { ciphertext, metadata });`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`

Reformatting: cargo fmt + various manual tweaks 2021-09-28 00:47:33 +02:00			/// Returns the decrypted `payload.ciphertext` plus the `symmetric_key` that was used for
			`/// decryption if successful.`
Fix remaining misleading async usage 2021-03-31 06:12:32 +02:00			`fn decrypt_onion_request_payload(`
test suite and cargp fmt 2021-10-08 07:56:27 +02:00			`payload: OnionRequestPayload,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`) -> Result<(Vec<u8>, Vec<u8>), Rejection> {`
Read PEM files 2021-03-12 02:39:35 +01:00			`let ephemeral_key = hex::decode(payload.metadata.ephemeral_key).unwrap(); // Safe because it was validated in the parsing step`
remove unnecessary async 2021-03-31 02:23:45 +02:00			`let symmetric_key = crypto::get_x25519_symmetric_key(&ephemeral_key, &crypto::PRIVATE_KEY)?;`
			`let plaintext = crypto::decrypt_aes_gcm(&payload.ciphertext, &symmetric_key)?;`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`return Ok((plaintext, symmetric_key));`
			`}`

Clean 2021-03-16 04:22:33 +01:00			`async fn encrypt_response(response: Response, symmetric_key: &[u8]) -> Result<Response, Rejection> {`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`let bytes: Vec<u8>;`
			`if response.status().is_success() {`
			`let (_, body) = response.into_parts();`
			`bytes = warp::hyper::body::to_bytes(body).await.unwrap().to_vec();`
			`} else {`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`let error = models::StatusCode { status_code: response.status().as_u16() };`
Lay the foundation for response encryption 2021-03-15 03:39:25 +01:00			`bytes = serde_json::to_vec(&error).unwrap();`
			`}`
remove unnecessary async 2021-03-31 02:23:45 +02:00			`let ciphertext = crypto::encrypt_aes_gcm(&bytes, symmetric_key).unwrap();`
Implement response encryption 2021-03-15 03:59:54 +01:00			`let json = base64::encode(&ciphertext);`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`let response =`
			`warp::http::Response::builder().status(StatusCode::OK.as_u16()).body(json).into_response();`
Fix OR response 2021-03-23 03:04:38 +01:00			`return Ok(response);`
Implement receiving part of LSRPC logic 2021-03-11 06:20:49 +01:00			`}`