1 files changed, 201 insertions, 0 deletions
diff --git a/dht/src/Network/BitTorrent/DHT/Token.hs b/dht/src/Network/BitTorrent/DHT/Token.hs
new file mode 100644
index 00000000..171cc8be
--- /dev/null
+++ b/dht/src/Network/BitTorrent/DHT/Token.hs
@@ -0,0 +1,201 @@
+-- |
+--   Copyright   :  (c) Sam Truzjan 2013
+--   License     :  BSD3
+--   Maintainer  :  pxqr.sta@gmail.com
+--   Stability   :  experimental
+--   Portability :  portable
+--
+-- The return value for a query for peers includes an opaque value
+-- known as the 'Token'. For a node to announce that its controlling
+-- peer is downloading a torrent, it must present the token received
+-- from the same queried node in a recent query for peers. When a node
+-- attempts to \"announce\" a torrent, the queried node checks the
+-- token against the querying node's 'IP' address. This is to prevent
+-- malicious hosts from signing up other hosts for torrents. Since the
+-- token is merely returned by the querying node to the same node it
+-- received the token from, the implementation is not defined. Tokens
+-- must be accepted for a reasonable amount of time after they have
+-- been distributed.
+--
+{-# LANGUAGE GeneralizedNewtypeDeriving, CPP #-}
+module Network.BitTorrent.DHT.Token
+       ( -- * Token
+         Token
+       , maxInterval
+       , toPaddedByteString
+       , fromPaddedByteString
+         -- * Session tokens
+       , TokenMap
+       , SessionTokens
+       , nullSessionTokens
+       , checkToken
+       , grantToken
+         -- ** Construction
+       , Network.BitTorrent.DHT.Token.tokens
+         -- ** Query
+       , Network.BitTorrent.DHT.Token.lookup
+       , Network.BitTorrent.DHT.Token.member
+         -- ** Modification
+       , Network.BitTorrent.DHT.Token.defaultUpdateInterval
+       , Network.BitTorrent.DHT.Token.update
+       ) where
+import Control.Arrow
+import Control.Monad.State
+#ifdef VERSION_bencoding
+import Data.BEncode (BEncode)
+#endif
+import Data.ByteString as BS
+import Data.ByteString.Char8 as B8
+import Data.ByteString.Lazy as BL
+import Data.ByteString.Lazy.Builder as BS
+import qualified Data.ByteString.Base16 as Base16
+import Data.Default
+import Data.List as L
+import Data.Hashable
+import Data.String
+import Data.Time
+import System.Random
+import Control.Concurrent.STM
+-- TODO use ShortByteString
+-- | An opaque value.
+newtype Token = Token BS.ByteString
+  deriving ( Eq, IsString
+#ifdef VERSION_bencoding
+           , BEncode
+#endif
+           )
+instance Show Token where
+    show (Token bs) = B8.unpack $ Base16.encode bs
+instance Read Token where
+    readsPrec i s = pure $ (Token *** B8.unpack) $ Base16.decode (B8.pack s)
+-- | Meaningless token, for testing purposes only.
+instance Default Token where
+  def = makeToken (0::Int) 0
+-- | Prepend token with 0x20 bytes to fill the available width.
+--
+-- If n > 8, then this will also guarantee a nonzero token, which is useful for
+-- Tox ping-id values for announce responses.
+toPaddedByteString :: Int -> Token -> BS.ByteString
+toPaddedByteString n (Token bs) = BS.append (BS.replicate (n - BS.length bs) 0x20) bs
+fromPaddedByteString :: Int -> BS.ByteString -> Token
+fromPaddedByteString n bs = Token $ BS.drop (n - len) bs
+ where
+    len = BS.length tok where Token tok = def
+-- | The secret value used as salt.
+type Secret = Int
+-- The BitTorrent implementation uses the SHA1 hash of the IP address
+-- concatenated onto a secret, we use hashable instead.
+makeToken :: Hashable a => a -> Secret -> Token
+makeToken n s = Token $ toBS $ hashWithSalt s n
+  where
+    toBS = toStrict . toLazyByteString . int64BE . fromIntegral
+{-# INLINE makeToken #-}
+-- | Constant space 'Node' to 'Token' map based on the secret value.
+data TokenMap = TokenMap
+  { prevSecret :: {-# UNPACK #-} !Secret
+  , curSecret  :: {-# UNPACK #-} !Secret
+  , generator  :: {-# UNPACK #-} !StdGen
+  } deriving Show
+-- | A new token map based on the specified seed value. Returned token
+-- map should be periodicatically 'update'd.
+--
+-- Normally, the seed value should vary between invocations of the
+-- client software.
+tokens :: Int -> TokenMap
+tokens seed = (`evalState` mkStdGen seed) $
+  TokenMap <$> state next
+           <*> state next
+           <*> get
+-- | Get token for the given node. A token becomes invalid after 2
+-- 'update's.
+--
+-- Typically used to handle find_peers query.
+lookup :: Hashable a => a -> TokenMap -> Token
+lookup addr TokenMap {..} = makeToken addr curSecret
+-- | Check if token is valid.
+--
+-- Typically used to handle 'Network.DHT.Mainline.Announce'
+-- query. If token is invalid the 'Network.KRPC.ProtocolError' should
+-- be sent back to the malicious node.
+member :: Hashable a => a -> Token -> TokenMap -> Bool
+member addr token TokenMap {..} = token `L.elem` valid
+  where valid = makeToken addr <$> [curSecret, prevSecret]
+-- | Secret changes every five minutes and tokens up to ten minutes old
+-- are accepted.
+defaultUpdateInterval :: NominalDiffTime
+defaultUpdateInterval = 5 * 60
+-- | Update current tokens.
+update :: TokenMap -> TokenMap
+update TokenMap {..} = TokenMap
+    { prevSecret = curSecret
+    , curSecret  = newSecret
+    , generator  = newGen
+    }
+  where
+    (newSecret, newGen) = next generator
+data SessionTokens = SessionTokens
+  { tokenMap    :: !TokenMap
+  , lastUpdate  :: !UTCTime
+  , maxInterval :: !NominalDiffTime
+  }
+nullSessionTokens :: IO SessionTokens
+nullSessionTokens = SessionTokens
+  <$> (tokens <$> randomIO)
+  <*> getCurrentTime
+  <*> pure defaultUpdateInterval
+-- TODO invalidate *twice* if needed
+invalidateTokens :: UTCTime -> SessionTokens -> SessionTokens
+invalidateTokens curTime ts @ SessionTokens {..}
+  | curTime `diffUTCTime` lastUpdate > maxInterval = SessionTokens
+    { tokenMap    = update tokenMap
+    , lastUpdate  = curTime
+    , maxInterval = maxInterval
+    }
+  |                  otherwise                     = ts
+{-----------------------------------------------------------------------
+-- Tokens
+-----------------------------------------------------------------------}
+tryUpdateSecret :: TVar SessionTokens -> IO ()
+tryUpdateSecret toks = do
+  curTime <- getCurrentTime
+  atomically $ modifyTVar' toks (invalidateTokens curTime)
+grantToken :: Hashable addr => TVar SessionTokens -> addr -> IO Token
+grantToken sessionTokens addr = do
+  tryUpdateSecret sessionTokens
+  toks <- readTVarIO sessionTokens
+  return $ Network.BitTorrent.DHT.Token.lookup addr $ tokenMap toks
+-- | Throws 'HandlerError' if the token is invalid or already
+-- expired. See 'TokenMap' for details.
+checkToken :: Hashable addr => TVar SessionTokens -> addr -> Token -> IO Bool
+checkToken sessionTokens addr questionableToken = do
+  tryUpdateSecret sessionTokens
+  toks <- readTVarIO sessionTokens
+  return $ member addr questionableToken (tokenMap toks)

diff --git a/dht/src/Network/BitTorrent/DHT/Token.hs b/dht/src/Network/BitTorrent/DHT/Token.hs new file mode 100644 index 00000000..171cc8be --- /dev/null +++ b/dht/src/Network/BitTorrent/DHT/Token.hs
@@ -0,0 +1,201 @@
	1	-- \|
	2	-- Copyright : (c) Sam Truzjan 2013
	3	-- License : BSD3
	4	-- Maintainer : pxqr.sta@gmail.com
	5	-- Stability : experimental
	6	-- Portability : portable
	7	--
	8	-- The return value for a query for peers includes an opaque value
	9	-- known as the 'Token'. For a node to announce that its controlling
	10	-- peer is downloading a torrent, it must present the token received
	11	-- from the same queried node in a recent query for peers. When a node
	12	-- attempts to \"announce\" a torrent, the queried node checks the
	13	-- token against the querying node's 'IP' address. This is to prevent
	14	-- malicious hosts from signing up other hosts for torrents. Since the
	15	-- token is merely returned by the querying node to the same node it
	16	-- received the token from, the implementation is not defined. Tokens
	17	-- must be accepted for a reasonable amount of time after they have
	18	-- been distributed.
	19	--
	20	{-# LANGUAGE GeneralizedNewtypeDeriving, CPP #-}
	21	module Network.BitTorrent.DHT.Token
	22	( -- * Token
	23	Token
	24	, maxInterval
	25	, toPaddedByteString
	26	, fromPaddedByteString
	27
	28	-- * Session tokens
	29	, TokenMap
	30	, SessionTokens
	31	, nullSessionTokens
	32	, checkToken
	33	, grantToken
	34
	35	-- ** Construction
	36	, Network.BitTorrent.DHT.Token.tokens
	37
	38	-- ** Query
	39	, Network.BitTorrent.DHT.Token.lookup
	40	, Network.BitTorrent.DHT.Token.member
	41
	42	-- ** Modification
	43	, Network.BitTorrent.DHT.Token.defaultUpdateInterval
	44	, Network.BitTorrent.DHT.Token.update
	45	) where
	46
	47	import Control.Arrow
	48	import Control.Monad.State
	49	#ifdef VERSION_bencoding
	50	import Data.BEncode (BEncode)
	51	#endif
	52	import Data.ByteString as BS
	53	import Data.ByteString.Char8 as B8
	54	import Data.ByteString.Lazy as BL
	55	import Data.ByteString.Lazy.Builder as BS
	56	import qualified Data.ByteString.Base16 as Base16
	57	import Data.Default
	58	import Data.List as L
	59	import Data.Hashable
	60	import Data.String
	61	import Data.Time
	62	import System.Random
	63	import Control.Concurrent.STM
	64
	65	-- TODO use ShortByteString
	66
	67	-- \| An opaque value.
	68	newtype Token = Token BS.ByteString
	69	deriving ( Eq, IsString
	70	#ifdef VERSION_bencoding
	71	, BEncode
	72	#endif
	73	)
	74
	75	instance Show Token where
	76	show (Token bs) = B8.unpack $ Base16.encode bs
	77
	78	instance Read Token where
	79	readsPrec i s = pure $ (Token *** B8.unpack) $ Base16.decode (B8.pack s)
	80
	81	-- \| Meaningless token, for testing purposes only.
	82	instance Default Token where
	83	def = makeToken (0::Int) 0
	84
	85	-- \| Prepend token with 0x20 bytes to fill the available width.
	86	--
	87	-- If n > 8, then this will also guarantee a nonzero token, which is useful for
	88	-- Tox ping-id values for announce responses.
	89	toPaddedByteString :: Int -> Token -> BS.ByteString
	90	toPaddedByteString n (Token bs) = BS.append (BS.replicate (n - BS.length bs) 0x20) bs
	91
	92	fromPaddedByteString :: Int -> BS.ByteString -> Token
	93	fromPaddedByteString n bs = Token $ BS.drop (n - len) bs
	94	where
	95	len = BS.length tok where Token tok = def
	96
	97	-- \| The secret value used as salt.
	98	type Secret = Int
	99
	100	-- The BitTorrent implementation uses the SHA1 hash of the IP address
	101	-- concatenated onto a secret, we use hashable instead.
	102	makeToken :: Hashable a => a -> Secret -> Token
	103	makeToken n s = Token $ toBS $ hashWithSalt s n
	104	where
	105	toBS = toStrict . toLazyByteString . int64BE . fromIntegral
	106	{-# INLINE makeToken #-}
	107
	108	-- \| Constant space 'Node' to 'Token' map based on the secret value.
	109	data TokenMap = TokenMap
	110	{ prevSecret :: {-# UNPACK #-} !Secret
	111	, curSecret :: {-# UNPACK #-} !Secret
	112	, generator :: {-# UNPACK #-} !StdGen
	113	} deriving Show
	114
	115	-- \| A new token map based on the specified seed value. Returned token
	116	-- map should be periodicatically 'update'd.
	117	--
	118	-- Normally, the seed value should vary between invocations of the
	119	-- client software.
	120	tokens :: Int -> TokenMap
	121	tokens seed = (`evalState` mkStdGen seed) $
	122	TokenMap <$> state next
	123	<*> state next
	124	<*> get
	125
	126	-- \| Get token for the given node. A token becomes invalid after 2
	127	-- 'update's.
	128	--
	129	-- Typically used to handle find_peers query.
	130	lookup :: Hashable a => a -> TokenMap -> Token
	131	lookup addr TokenMap {..} = makeToken addr curSecret
	132
	133	-- \| Check if token is valid.
	134	--
	135	-- Typically used to handle 'Network.DHT.Mainline.Announce'
	136	-- query. If token is invalid the 'Network.KRPC.ProtocolError' should
	137	-- be sent back to the malicious node.
	138	member :: Hashable a => a -> Token -> TokenMap -> Bool
	139	member addr token TokenMap {..} = token `L.elem` valid
	140	where valid = makeToken addr <$> [curSecret, prevSecret]
	141
	142	-- \| Secret changes every five minutes and tokens up to ten minutes old
	143	-- are accepted.
	144	defaultUpdateInterval :: NominalDiffTime
	145	defaultUpdateInterval = 5 * 60
	146
	147	-- \| Update current tokens.
	148	update :: TokenMap -> TokenMap
	149	update TokenMap {..} = TokenMap
	150	{ prevSecret = curSecret
	151	, curSecret = newSecret
	152	, generator = newGen
	153	}
	154	where
	155	(newSecret, newGen) = next generator
	156
	157	data SessionTokens = SessionTokens
	158	{ tokenMap :: !TokenMap
	159	, lastUpdate :: !UTCTime
	160	, maxInterval :: !NominalDiffTime
	161	}
	162
	163	nullSessionTokens :: IO SessionTokens
	164	nullSessionTokens = SessionTokens
	165	<$> (tokens <$> randomIO)
	166	<*> getCurrentTime
	167	<*> pure defaultUpdateInterval
	168
	169	-- TODO invalidate twice if needed
	170	invalidateTokens :: UTCTime -> SessionTokens -> SessionTokens
	171	invalidateTokens curTime ts @ SessionTokens {..}
	172	\| curTime `diffUTCTime` lastUpdate > maxInterval = SessionTokens
	173	{ tokenMap = update tokenMap
	174	, lastUpdate = curTime
	175	, maxInterval = maxInterval
	176	}
	177	\| otherwise = ts
	178
	179	{-----------------------------------------------------------------------
	180	-- Tokens
	181	-----------------------------------------------------------------------}
	182
	183	tryUpdateSecret :: TVar SessionTokens -> IO ()
	184	tryUpdateSecret toks = do
	185	curTime <- getCurrentTime
	186	atomically $ modifyTVar' toks (invalidateTokens curTime)
	187
	188	grantToken :: Hashable addr => TVar SessionTokens -> addr -> IO Token
	189	grantToken sessionTokens addr = do
	190	tryUpdateSecret sessionTokens
	191	toks <- readTVarIO sessionTokens
	192	return $ Network.BitTorrent.DHT.Token.lookup addr $ tokenMap toks
	193
	194	-- \| Throws 'HandlerError' if the token is invalid or already
	195	-- expired. See 'TokenMap' for details.
	196	checkToken :: Hashable addr => TVar SessionTokens -> addr -> Token -> IO Bool
	197	checkToken sessionTokens addr questionableToken = do
	198	tryUpdateSecret sessionTokens
	199	toks <- readTVarIO sessionTokens
	200	return $ member addr questionableToken (tokenMap toks)
	201