Newer
Older
# Copyright 2019 PrivateStorage.io, LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
"""
This module implements controllers (in the MVC sense) for the web interface
for the client side of the storage plugin.
"""
from functools import (
partial,
)
from json import (
dumps,
)
from zope.interface import (
Interface,
implementer,
)
from twisted.logger import (
Logger,
)
from twisted.python.url import (
URL,
)
from twisted.internet.defer import (
Deferred,
succeed,
inlineCallbacks,
returnValue,
)
from twisted.web.client import (
Agent,
)
from treq import (
json_content,
from treq.client import (
HTTPClient,
)
from .model import (
RandomToken,
UnblindedToken,
Pass,
class TransientRedemptionError(Exception):
pass
class PermanentRedemptionError(Exception):
pass
class IRedeemer(Interface):
"""
An ``IRedeemer`` can exchange a voucher for one or more passes.
"""
def random_tokens_for_voucher(voucher, count):
"""
Generate a number of random tokens to use in the redemption process for
the given voucher.
:param Voucher voucher: The voucher the tokens will be associated
with.
:param int count: The number of random tokens to generate.
:return list[RandomToken]: The generated tokens. Random tokens must
be unique over the lifetime of the Tahoe-LAFS node where this
plugin is being used but the same tokens *may* be generated for
the same voucher. The tokens must be kept secret to preserve the
anonymity property of the system.
"""
def redeem(voucher, random_tokens):
"""
Redeem a voucher for unblinded tokens which can be used to construct
passes.
Implementations of this method do not need to be fault tolerant. If a
redemption attempt is interrupted before it completes, it is the
caller's responsibility to call this method again with the same
arguments.
:param Voucher voucher: The voucher to redeem.
:param list[RandomToken] random_tokens: The random tokens to use in
the redemption process.
:return: A ``Deferred`` which fires with a list of ``UnblindedToken``
instances on successful redemption or which fails with
``TransientRedemptionError`` on any error which may be resolved by
simply trying again later or which fails with
``PermanentRedemptionError`` on any error which is definitive and
final.
"""
@implementer(IRedeemer)
class NonRedeemer(object):
"""
A ``NonRedeemer`` never tries to redeem vouchers for ZKAPs.
"""
def random_tokens_for_voucher(self, voucher, count):
# It doesn't matter because we're never going to try to redeem them.
return list(
RandomToken(u"{}-{}".format(voucher.number, n))
for n
in range(count)
)
def redeem(self, voucher, random_tokens):
# Don't try to redeem them.
return Deferred()
@implementer(IRedeemer)
@attr.s
class DummyRedeemer(object):
"""
A ``DummyRedeemer`` pretends to redeem vouchers for ZKAPs. Instead of
really redeeming them, it makes up some fake ZKAPs and pretends those are
the result.
"""
@classmethod
def make(cls, section_name, node_config, announcement, reactor):
return cls()
def random_tokens_for_voucher(self, voucher, count):
"""
Generate some number of random tokens to submit along with a voucher for
redemption.
"""
# Dummy token generation.
return list(
RandomToken(u"{}-{}".format(voucher.number, n))
for n
in range(count)
)
def redeem(self, voucher, random_tokens):
"""
:return: An already-fired ``Deferred`` that has a list of
``UnblindedToken`` instances wrapping meaningless values.
"""
return succeed(
list(
UnblindedToken(token.token_value)
for token
in random_tokens
),
)
def tokens_to_passes(self, message, unblinded_tokens):
return list(
Pass(token.text)
for token
in unblinded_tokens
)
@implementer(IRedeemer)
@attr.s
class RistrettoRedeemer(object):
_treq = attr.ib()
_api_root = attr.ib(validator=attr.validators.instance_of(URL))
@classmethod
def make(cls, section_name, node_config, announcement, reactor):
return cls(
HTTPClient(Agent(reactor)),
URL.from_text(announcement[u"ristretto-issuer-root-url"]),
)
def random_tokens_for_voucher(self, voucher, count):
return list(
RandomToken(privacypass.RandomToken.create().encode_base64().decode("ascii"))
for n
in range(count)
)
@inlineCallbacks
def redeem(self, voucher, encoded_random_tokens):
random_tokens = list(
privacypass.RandomToken.decode_base64(token.token_value.encode("ascii"))
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
in encoded_random_tokens
)
blinded_tokens = list(token.blind() for token in random_tokens)
response = yield self._treq.post(
self._api_root.child(u"v1", u"redeem").to_text(),
dumps({
u"redeemVoucher": voucher.number,
u"redeemTokens": list(
token.encode_base64()
for token
in blinded_tokens
),
}),
)
result = yield json_content(response)
marshaled_signed_tokens = result[u"signatures"]
marshaled_proof = result[u"proof"]
marshaled_public_key = result[u"public-key"]
public_key = privacypass.PublicKey.decode_base64(
marshaled_public_key.encode("ascii"),
)
clients_signed_tokens = list(
privacypass.SignedToken.decode_base64(
marshaled_signed_token.encode("ascii"),
)
for marshaled_signed_token
in marshaled_signed_tokens
)
clients_proof = privacypass.BatchDLEQProof.decode_base64(
marshaled_proof.encode("ascii"),
)
clients_unblinded_tokens = clients_proof.invalid_or_unblind(
random_tokens,
blinded_tokens,
clients_signed_tokens,
public_key,
)
returnValue(list(
UnblindedToken(token.encode_base64().decode("ascii"))
for token
in clients_unblinded_tokens
def tokens_to_passes(self, message, unblinded_tokens):
assert isinstance(message, bytes)
assert isinstance(unblinded_tokens, list)
assert all(isinstance(element, UnblindedToken) for element in unblinded_tokens)
unblinded_tokens = list(
privacypass.UnblindedToken.decode_base64(token.text.encode("ascii"))
for token
in unblinded_tokens
)
clients_verification_keys = list(
token.derive_verification_key_sha512()
for token
in unblinded_tokens
)
clients_signatures = list(
verification_key.sign_sha512(message)
for verification_key
in clients_verification_keys
)
clients_preimages = list(
token.preimage()
for token
in unblinded_tokens
)
marshaled_passes = list(
preimage.encode_base64() + b" " + signature.encode_base64()
for (preimage, signature)
in zip(clients_preimages, clients_signatures)
return list(
Pass(p.decode("ascii"))
for p
in marshaled_passes
)
@attr.s
class PaymentController(object):
"""
The ``PaymentController`` coordinates the process of turning a voucher
into a collection of ZKAPs:
1. A voucher to be consumed is handed to the controller.
Once a voucher is handed over to the controller the controller takes all responsibility for it.
2. The controller tells the data store to remember the voucher.
The data store provides durability for the voucher which represents an investment (ie, a purchase) on the part of the client.
3. The controller hands the voucher and some random tokens to a redeemer.
In the future, this step will need to be retried in the case of failures.
4. When the voucher has been redeemed for unblinded tokens (inputs to
pass construction), the controller hands them to the data store with
the voucher. The data store marks the voucher as redeemed and stores
the unblinded tokens for use by the storage client.
store = attr.ib()
"""
:param unicode voucher: A voucher to redeem.
"""
# Pre-generate the random tokens to use when redeeming the voucher.
# These are persisted with the voucher so the redemption can be made
# idempotent. We don't want to lose the value if we fail after the
# server deems the voucher redeemed but before we persist the result.
# With a stable set of tokens, we can re-submit them and the server
# can re-sign them without fear of issuing excess passes. Whether the
# server signs a given set of random tokens once or many times, the
# number of passes that can be constructed is still only the size of
# the set of random tokens.
self._log.info("Generating random tokens for a voucher ({voucher}).", voucher=voucher)
tokens = self.redeemer.random_tokens_for_voucher(Voucher(voucher), 100)
# Persist the voucher and tokens so they're available if we fail.
self._log.info("Persistenting random tokens for a voucher ({voucher}).", voucher=voucher)
self.store.add(voucher, tokens)
# Ask the redeemer to do the real task of redemption.
self._log.info("Redeeming random tokens for a voucher ({voucher}).", voucher=voucher)
d = self.redeemer.redeem(Voucher(voucher), tokens)
d.addCallback(
partial(self._redeemSuccess, voucher),
)
# XXX This needs an errback!
def _redeemSuccess(self, voucher, unblinded_tokens):
"""
Update the database state to reflect that a voucher was redeemed and to
store the resulting unblinded tokens (which can be used to construct
passes later).
self._log.info("Inserting redeemed unblinded tokens for a voucher ({voucher}).", voucher=voucher)
self.store.insert_unblinded_tokens_for_voucher(voucher, unblinded_tokens)
def get_redeemer(plugin_name, node_config, announcement, reactor):
section_name = u"storageclient.plugins.{}".format(plugin_name)
redeemer_kind = node_config.get_config(
section=section_name,
option=u"redeemer",
default=u"ristretto",
)
return _REDEEMERS[redeemer_kind](section_name, node_config, announcement, reactor)
_REDEEMERS = {
u"dummy": DummyRedeemer.make,
u"ristretto": RistrettoRedeemer.make,
}