primitives/types/identifiers/

peer_id.rs

use std::ops::BitXor;

use derive_more::derive::AsRef;
use ed25519_dalek::{
    pkcs8::{DecodePrivateKey, DecodePublicKey},
    SigningKey,
    Verifier,
    VerifyingKey,
};
use quinn::rustls::{server::ParsedCertificate, Error as RustlsError};
pub use rand::Rng;
#[cfg(any(test, feature = "dev"))]
use rand::{distributions::Standard, prelude::Distribution};
use rustls_pki_types::CertificateDer;
use serde::{Deserialize, Serialize};
use wincode::{SchemaRead, SchemaWrite};

use crate::{errors::PrimitiveError, izip_eq};
pub const PEER_ID_LENGTH: usize = ed25519_dalek::PUBLIC_KEY_LENGTH; // 32 Bytes

#[derive(
    Copy,
    Clone,
    Serialize,
    Deserialize,
    SchemaRead,
    SchemaWrite,
    PartialEq,
    Eq,
    Hash,
    PartialOrd,
    Ord,
    AsRef,
)]
#[as_ref([u8])]
#[repr(transparent)]
/// A unique identifier for a peer in the network.
/// It corresponds to the ed25519 public key of the peer in big-endian format.
pub struct PeerId([u8; PEER_ID_LENGTH]);

impl Verifier<ed25519_dalek::Signature> for PeerId {
    fn verify(
        &self,
        message: &[u8],
        signature: &ed25519_dalek::Signature,
    ) -> Result<(), ed25519_dalek::SignatureError> {
        let public_key =
            VerifyingKey::try_from(*self).map_err(ed25519_dalek::SignatureError::from_source)?;
        public_key.verify_strict(message, signature)
    }
}

#[cfg(not(any(test, feature = "dev")))]
impl std::fmt::Display for PeerId {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}", hex::encode(self.0))
    }
}

#[cfg(not(any(test, feature = "dev")))]
impl std::fmt::Debug for PeerId {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}", hex::encode(self.0))
    }
}

#[cfg(any(test, feature = "dev"))]
impl std::fmt::Display for PeerId {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}", &hex::encode(self.0)[0..6])
    }
}

#[cfg(any(test, feature = "dev"))]
impl std::fmt::Debug for PeerId {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}", &hex::encode(self.0)[0..6])
    }
}

// ------------- Failsafe Conversions -------------- //

impl<'pid> From<&'pid PeerId> for &'pid [u8; PEER_ID_LENGTH] {
    fn from(peer_id: &'pid PeerId) -> Self {
        &peer_id.0
    }
}

impl From<PeerId> for [u8; PEER_ID_LENGTH] {
    fn from(peer_id: PeerId) -> Self {
        peer_id.0
    }
}

impl From<&PeerId> for String {
    fn from(peer_id: &PeerId) -> String {
        hex::encode(peer_id.0)
    }
}

impl From<VerifyingKey> for PeerId {
    fn from(verifying_key: VerifyingKey) -> PeerId {
        Self(verifying_key.to_bytes())
    }
}

impl TryFrom<PeerId> for VerifyingKey {
    type Error = PrimitiveError;

    fn try_from(peer_id: PeerId) -> Result<VerifyingKey, PrimitiveError> {
        VerifyingKey::from_bytes(&peer_id.0).map_err(|_| PrimitiveError::InvalidPeerId(peer_id))
    }
}

impl From<&SigningKey> for PeerId {
    fn from(signing_key: &SigningKey) -> PeerId {
        Self(signing_key.verifying_key().to_bytes())
    }
}

// ------------- Conversions -------------- //

impl TryFrom<&[u8; PEER_ID_LENGTH]> for PeerId {
    type Error = PrimitiveError;

    fn try_from(bytes: &[u8; PEER_ID_LENGTH]) -> Result<Self, Self::Error> {
        let public_key = VerifyingKey::from_bytes(bytes).map_err(|_| {
            PrimitiveError::InvalidParameters(
                "Could not convert it to an ed25519 public key".to_string(),
            )
        })?;
        Ok(Self(public_key.to_bytes()))
    }
}

impl TryFrom<CertificateDer<'static>> for PeerId {
    type Error = PrimitiveError;

    fn try_from(certificate: CertificateDer<'static>) -> Result<Self, Self::Error> {
        Self::from_certificate(certificate)
    }
}

impl TryFrom<&quinn::Connection> for PeerId {
    type Error = PrimitiveError;

    fn try_from(connection: &quinn::Connection) -> Result<Self, Self::Error> {
        Self::from_connection(connection)
    }
}

impl PeerId {
    /// Construct a peer ID from raw bytes without validating Ed25519 encoding.
    ///
    /// Prefer `TryFrom<&[u8; 32]>` when the bytes come from untrusted input.
    #[cfg(any(test, feature = "dev"))]
    pub const fn from_bytes_unchecked(bytes: [u8; PEER_ID_LENGTH]) -> Self {
        Self(bytes)
    }

    /// Construct a peer ID from the given Ed25519 public key in an rcgen keypair.
    pub fn from_keypair(keypair: &rcgen::KeyPair) -> Result<Self, PrimitiveError> {
        if keypair.algorithm() != &rcgen::PKCS_ED25519 {
            return Err(PrimitiveError::InvalidParameters(
                "Keypair is not Ed25519".to_string(),
            ));
        }
        let public_key_bytes: [u8; PEER_ID_LENGTH] =
            keypair.public_key_raw().to_vec().try_into().unwrap();
        Ok(Self(public_key_bytes))
    }

    /// Construct a peer ID from the given secret key in DER format.
    pub fn from_secret_key_der(bytes: &[u8]) -> Result<Self, PrimitiveError> {
        let secret_key = SigningKey::from_pkcs8_der(bytes).map_err(|e| {
            PrimitiveError::InvalidParameters(format!(
                "Failed to decode secret key in DER format: {e}",
            ))
        })?;
        Ok(Self(*secret_key.verifying_key().as_bytes()))
    }

    /// Construct a peer ID from the given public key in DER format.
    pub fn from_public_key_der(bytes: &[u8]) -> Result<Self, PrimitiveError> {
        let public_key = VerifyingKey::from_public_key_der(bytes).map_err(|e| {
            PrimitiveError::InvalidParameters(format!(
                "Failed to decode public key in DER format: {e}",
            ))
        })?;
        Ok(Self(public_key.to_bytes()))
    }

    /// Construct a peer ID from the given Rustls certificate in DER format.
    pub(crate) fn from_certificate(
        certificate: CertificateDer<'static>,
    ) -> Result<Self, PrimitiveError> {
        let cert = ParsedCertificate::try_from(&certificate)?;
        let spki = cert.subject_public_key_info();

        // Decode the SPKI to obtain the PeerId
        Self::from_public_key_der(spki.as_ref())
    }

    /// Retrieve the peer ID corresponding to the given quinn connection.
    pub fn from_connection(connection: &quinn::Connection) -> Result<Self, PrimitiveError> {
        let certificate = connection
            .peer_identity()
            .ok_or(RustlsError::NoCertificatesPresented)?
            .downcast::<Vec<CertificateDer<'static>>>()
            .map_err(|_| RustlsError::General("Peer identity didn't downcast to a certificate. Check quinn session (should be default rustls).".to_string()))?
            .into_iter()
            .next()
            .ok_or(RustlsError::NoCertificatesPresented)?;
        Self::from_certificate(certificate)
    }
}

#[macros::op_variants(owned, borrowed, flipped_commutative)]
impl BitXor<&PeerId> for PeerId {
    type Output = PeerId;

    fn bitxor(mut self, rhs: &Self) -> Self::Output {
        izip_eq!(self.0.iter_mut(), rhs.0.iter()).for_each(|(a, b)| {
            *a ^= *b;
        });
        self
    }
}

#[cfg(any(test, feature = "dev"))]
impl Distribution<PeerId> for Standard {
    fn sample<R: Rng + ?Sized>(&self, rng: &mut R) -> PeerId {
        let mut secret_key = <[u8; PEER_ID_LENGTH]>::default();
        rng.fill_bytes(&mut secret_key);
        let public_key = SigningKey::from_bytes(&secret_key)
            .verifying_key()
            .to_bytes();
        PeerId(public_key)
    }
}

#[cfg(test)]
mod tests {
    use ed25519_dalek::{pkcs8::DecodePrivateKey, Signer, SigningKey, Verifier};
    use rand::SeedableRng;

    use super::*;
    use crate::random::BaseRng;

    const SAMPLE_CERTIFICATE_DER: &str = "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";
    const SAMPLE_SKEY_DER: &str = "3051020101300506032b657004220420c66ea2001a6b5b4e0b4ef51265c74829bb34e1952e9ed399c4158acf8df4521f812100a965eea43375c9ecff6ac3a324ee77cd3d0ceca3b1a203881bc61a16203593de";
    const SAMPLE_PKEY_DER: &str =
        "302a300506032b6570032100a965eea43375c9ecff6ac3a324ee77cd3d0ceca3b1a203881bc61a16203593de";
    const SAMPLE_SKEY_BYTES: &str =
        "c66ea2001a6b5b4e0b4ef51265c74829bb34e1952e9ed399c4158acf8df4521f";
    const SAMPLE_PKEY_BYTES: &str =
        "a965eea43375c9ecff6ac3a324ee77cd3d0ceca3b1a203881bc61a16203593de";

    #[test]
    fn test_happypath_peer_id_from_keys() {
        // Load the secret key and sign a message
        let secret_key =
            SigningKey::from_bytes(&hex::decode(SAMPLE_SKEY_BYTES).unwrap().try_into().unwrap());
        let message = b"Hello, world!";
        let signature = secret_key.sign(message);

        // Create a PeerId from the public key bytes and verify the signature
        let pkey_bytes: [u8; 32] = hex::decode(SAMPLE_PKEY_BYTES).unwrap().try_into().unwrap();
        let peer_id = PeerId::try_from(&pkey_bytes).unwrap();
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(peer_id.as_ref(), secret_key.verifying_key().as_bytes());

        // Create a PeerId from the ed25519 public key and verify the signature
        let pkey =
            VerifyingKey::from_public_key_der(&hex::decode(SAMPLE_PKEY_DER).unwrap()).unwrap();
        let peer_id = PeerId::from(pkey);
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(secret_key.verifying_key().as_bytes(), peer_id.as_ref());
        assert_eq!(secret_key.verifying_key(), peer_id.try_into().unwrap());

        // Create a PeerId from the ed25519 secret key and verify the signature
        let skey = SigningKey::from_pkcs8_der(&hex::decode(SAMPLE_SKEY_DER).unwrap()).unwrap();
        let peer_id = PeerId::from(&skey);
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(peer_id.as_ref(), secret_key.verifying_key().as_bytes());
    }

    #[test]
    fn test_happypath_peer_id_from_serialized_keys() {
        // Load the secret key and sign a message
        let secret_key =
            SigningKey::from_bytes(&hex::decode(SAMPLE_SKEY_BYTES).unwrap().try_into().unwrap());
        let message = b"Hello, serialized keys!";
        let signature = secret_key.sign(message);

        // Create a PeerId from the serialized public key in DER format and verify the signature
        let peer_id = PeerId::from_secret_key_der(&hex::decode(SAMPLE_SKEY_DER).unwrap()).unwrap();
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(peer_id.as_ref(), secret_key.verifying_key().as_bytes());

        // Create a PeerId from the serialized secret key in DER format and verify the signature
        let peer_id = PeerId::from_secret_key_der(&hex::decode(SAMPLE_SKEY_DER).unwrap()).unwrap();
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(peer_id.as_ref(), secret_key.verifying_key().as_bytes());
    }

    #[test]
    fn test_happypath_peer_id_from_certificate() {
        // Load the secret key and sign a message
        let secret_key =
            SigningKey::from_bytes(&hex::decode(SAMPLE_SKEY_BYTES).unwrap().try_into().unwrap());
        let message = b"Hello, certificate!";
        let signature = secret_key.sign(message);

        // Create a PeerId from the certificate and verify the signature
        let certificate = CertificateDer::from(hex::decode(SAMPLE_CERTIFICATE_DER).unwrap());
        let peer_id = PeerId::from_certificate(certificate).unwrap();
        peer_id.verify(message, &signature).unwrap();
        assert_eq!(peer_id.as_ref(), secret_key.verifying_key().as_bytes());
    }

    #[test]
    fn test_happypath_two_peer_ids_cross_verify() {
        let mut rng = BaseRng::from_seed(*b"Look Sam, the eagles are coming!");
        let secret_key_1 = SigningKey::generate(&mut rng);
        let secret_key_2 = SigningKey::generate(&mut rng);

        let message = b"Hello, cross verify!";

        let signature_1 = secret_key_1.sign(message);
        let signature_2 = secret_key_2.sign(message);

        let peer_id_1 = PeerId::from(&secret_key_1);
        let peer_id_2 = PeerId::from(&secret_key_2);
        assert_eq!(peer_id_1.as_ref(), secret_key_1.verifying_key().as_bytes());
        assert_eq!(peer_id_2.as_ref(), secret_key_2.verifying_key().as_bytes());

        peer_id_1.verify(message, &signature_1).unwrap();
        peer_id_2.verify(message, &signature_2).unwrap();

        peer_id_2.verify(message, &signature_1).unwrap_err();
        peer_id_1.verify(message, &signature_2).unwrap_err();
    }

    #[test]
    fn test_invalid_deserialized_peer_id_verify_never_panics() {
        let mut rng = BaseRng::from_seed(*b"Look Sam, the eagles are coming!");
        let signing_key = SigningKey::generate(&mut rng);
        let message = b"Hello, invalid peer id!";
        let signature = signing_key.sign(message);

        // Invalid compressed Edwards-Y encoding for an Ed25519 public key.
        let invalid_peer_id_bytes = [0xFFu8; PEER_ID_LENGTH];

        fn assert_no_panic_verify_error<E>(
            decoded: Result<PeerId, E>,
            message: &[u8],
            signature: &ed25519_dalek::Signature,
        ) {
            // If deserialization is tightened later, rejecting invalid bytes directly is also
            // acceptable for this test.
            if let Ok(invalid_peer_id) = decoded {
                let verify_result =
                    std::panic::catch_unwind(|| invalid_peer_id.verify(message, signature));
                assert!(
                    verify_result.is_ok(),
                    "verify() must return an error instead of panicking for invalid PeerId bytes"
                );
                assert!(verify_result.unwrap().is_err());
            }
        }

        let bincode_encoded = bincode::serialize(&invalid_peer_id_bytes).unwrap();
        let bincode_decoded: Result<PeerId, _> = bincode::deserialize(&bincode_encoded);
        assert_no_panic_verify_error(bincode_decoded, message, &signature);

        let wincode_encoded = wincode::serialize(&invalid_peer_id_bytes).unwrap();
        let wincode_decoded: Result<PeerId, _> = wincode::deserialize(&wincode_encoded);
        assert_no_panic_verify_error(wincode_decoded, message, &signature);
    }
}