Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Hsv3 desc encoding dev #21

Closed
wants to merge 6 commits into from
+781 −20
Closed

Hsv3 desc encoding dev #21

Changes from 1 commit
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
3625cb1
Add support for v3 ed25519 certs.
asn-d6 Aug 26, 2019
f815223
Add initial support for parsing v3 addresses.
asn-d6 Sep 3, 2019
a0238b7
Add initial support for decrypting both layers of the descriptor.
asn-d6 Sep 3, 2019
c1b793a
Add a test descriptor to be parsed while coding v3 support.
asn-d6 Sep 3, 2019
55bb32c
Add some dirty comments for descriptor encoding (XXX)
asn-d6 Sep 5, 2019
6d5b4e7
Implement certificate encoding and testing (with its own class).
asn-d6 Sep 5, 2019
File filter
Filter by extension
Clear filters
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
Prev Next
Add some dirty comments for descriptor encoding (XXX)
  • Loading branch information
@asn-d6
asn-d6 committed Sep 5, 2019
commit 55bb32c534a35430d6ba506ecf27340f1fd97bbc
58 stem/descriptor/hidden_service.py
View file
Open in desktop
@@ -512,21 +512,77 @@ class HiddenServiceDescriptorV3(BaseHiddenServiceDescriptor):
}

@classmethod
def content(cls, attr = None, exclude = (), sign = False):
def content(cls, attr = None, exclude = (), sign = False, ed25519_private_identity_key = None):
"""
Creates descriptor content with the given attributes. Mandatory fields are
filled with dummy information unless data is supplied. This doesn't yet
create a valid signature.
.. versionadded:: 1.6.0
:param dict attr: keyword/value mappings to be included in the descriptor
:param list exclude: mandatory keywords to exclude from the descriptor, this
results in an invalid descriptor
:param bool sign: includes cryptographic signatures and digests if True
:param ED25519PrivateKey ed25519_private_identity_key: the private identity key of
this onion service
:returns: **str** with the content of a descriptor
:raises:
* **ImportError** if cryptography is unavailable and sign is True
* **NotImplementedError** if not implemented for this descriptor type
"""
if sign:
raise NotImplementedError('Signing of %s not implemented' % cls.__name__)

# We need an private identity key for the onion service to create its
# descriptor. We could make a new one on the spot, but we also need to
# return it to the caller, otherwise the caller will have no way to decode
# the descriptor without knowing the private key or the onion address, so
# for now we consider it a mandatory argument.
if not ed25519_private_identity_key:
raise ValueError('Need to provide a private ed25519 identity key to create a descriptor')


return _descriptor_content(attr, exclude, (
('hs-descriptor', '3'),
('descriptor-lifetime', '180'),
# here we need to write a crypto blob
('descriptor-signing-key-cert', _random_crypto_blob('ED25519 CERT')),
# here we need the OEP scheme
('revision-counter', '15'),
# here we need the encrypted blob
('superencrypted', _random_crypto_blob('MESSAGE')),
# here we need an actual signature
('signature', 'wdc7ffr+dPZJ/mIQ1l4WYqNABcmsm6SHW/NL3M3wG7bjjqOJWoPR5TimUXxH52n5Zk0Gc7hl/hz3YYmAx5MvAg'),
), ())

@classmethod
def create(cls, attr = None, exclude = (), validate = True, sign = False):
"""
Creates a descriptor with the given attributes. Mandatory fields are filled
with dummy information unless data is supplied. This doesn't yet create a
valid signature.
.. versionadded:: 1.6.0
:param dict attr: keyword/value mappings to be included in the descriptor
:param list exclude: mandatory keywords to exclude from the descriptor, this
results in an invalid descriptor
:param bool validate: checks the validity of the descriptor's content if
**True**, skips these checks otherwise
:param bool sign: includes cryptographic signatures and digests if True
:returns: :class:`~stem.descriptor.Descriptor` subclass
:raises:
* **ValueError** if the contents is malformed and validate is True
* **ImportError** if cryptography is unavailable and sign is True
* **NotImplementedError** if not implemented for this descriptor type
"""
# Create a string-representation of the descriptor and then parse it
# immediately to create an object.
return cls(cls.content(attr, exclude, sign), validate = validate, skip_crypto_validation = not sign)

def __init__(self, raw_contents, validate = False, onion_address = None, skip_crypto_validation = False):
9 test/unit/descriptor/hidden_service_v3.py
View file
Open in desktop
@@ -46,6 +46,15 @@ def test_for_decrypt(self):
self.assertEqual(180, desc.lifetime)
self.assertEqual(42, desc.revision_counter)

def test_for_encoding(self):
from cryptography.hazmat.primitives.asymmetric.ed25519 import Ed25519PrivateKey
private_identity_key = Ed25519PrivateKey.generate()

desc_string = HiddenServiceDescriptorV3.content(ed25519_private_identity_key=private_identity_key)

print("")
print(desc_string.decode())

def test_for_riseup(self):
"""
Parse riseup's descriptor...