qudag-network 0.5.0

P2P networking layer for QuDAG - LibP2P with onion routing, dark addressing, and quantum encryption
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312

use crate::onion::{CircuitManager, DirectoryClient, MLKEMOnionRouter};
use crate::types::{NetworkError, NetworkMessage, PeerId, RoutingStrategy};
use rand::seq::{IteratorRandom, SliceRandom};
use rand::thread_rng;
use std::collections::{HashMap, HashSet};
use std::sync::Arc;
use tokio::sync::{Mutex, RwLock};

/// Information about a hop in a route
#[derive(Debug, Clone)]
pub struct HopInfo {
    #[allow(dead_code)]
    peer_id: PeerId,
    known_peers: HashSet<PeerId>,
    layer_keys: HashMap<usize, Vec<u8>>,
}

impl HopInfo {
    /// Check if this hop can decrypt a specific layer
    pub fn can_decrypt_layer(&self, layer: usize) -> bool {
        self.layer_keys.contains_key(&layer)
    }

    /// Check if this hop knows about a specific peer
    pub fn knows_peer(&self, peer: &PeerId) -> bool {
        self.known_peers.contains(peer)
    }
}

/// Anonymous router for network messages with ML-KEM onion routing
#[derive(Clone)]
pub struct Router {
    /// Known peers in the network
    peers: Arc<RwLock<HashSet<PeerId>>>,
    /// Hop information for each peer
    hop_info: Arc<RwLock<HashMap<PeerId, HopInfo>>>,
    /// ML-KEM onion router instance
    onion_router: Arc<Mutex<MLKEMOnionRouter>>,
    /// Circuit manager
    circuit_manager: Arc<Mutex<CircuitManager>>,
    /// Directory client
    directory_client: Arc<DirectoryClient>,
}

impl Router {
    /// Create a new router with ML-KEM onion routing
    pub async fn new() -> Result<Self, NetworkError> {
        let onion_router = MLKEMOnionRouter::new().await.map_err(|e| {
            NetworkError::RoutingError(format!("Failed to create onion router: {:?}", e))
        })?;

        let circuit_manager = Arc::new(Mutex::new(CircuitManager::new()));
        let directory_client = Arc::new(DirectoryClient::new());

        Ok(Self {
            peers: Arc::new(RwLock::new(HashSet::new())),
            hop_info: Arc::new(RwLock::new(HashMap::new())),
            onion_router: Arc::new(Mutex::new(onion_router)),
            circuit_manager,
            directory_client,
        })
    }

    /// Add a peer to the network
    pub async fn add_peer(&self, peer_id: PeerId) {
        let mut peers = self.peers.write().await;
        peers.insert(peer_id);

        // Create hop info for this peer
        let mut hop_info = self.hop_info.write().await;
        let mut known_peers = HashSet::new();

        // Each peer knows about a random subset of other peers (simulating network topology)
        let all_peers: Vec<_> = peers.iter().filter(|&&p| p != peer_id).cloned().collect();
        let mut rng = thread_rng();
        let subset_size = (all_peers.len() / 2).clamp(1, 3); // Know about 1-3 peers
        let known_subset: Vec<_> = all_peers
            .choose_multiple(&mut rng, subset_size)
            .cloned()
            .collect();

        for peer in known_subset {
            known_peers.insert(peer);
        }

        // Generate layer keys for this peer (simulating onion routing capabilities)
        let mut layer_keys = HashMap::new();
        for i in 0..5 {
            // Support up to 5 layers
            layer_keys.insert(i, vec![i as u8; 32]); // Simple key generation
        }

        hop_info.insert(
            peer_id,
            HopInfo {
                peer_id,
                known_peers,
                layer_keys,
            },
        );
    }

    /// Route a message using the specified strategy
    pub async fn route(
        &self,
        message: &NetworkMessage,
        strategy: RoutingStrategy,
    ) -> Result<Vec<PeerId>, NetworkError> {
        match strategy {
            RoutingStrategy::Anonymous { hops } => self.route_anonymous(message, hops).await,
            RoutingStrategy::Direct(peer_bytes) => {
                // Convert bytes to PeerId if possible
                if peer_bytes.len() == 32 {
                    let mut peer_id_bytes = [0u8; 32];
                    peer_id_bytes.copy_from_slice(&peer_bytes);
                    Ok(vec![PeerId::from_bytes(peer_id_bytes)])
                } else {
                    Err(NetworkError::RoutingError("Invalid peer ID format".into()))
                }
            }
            RoutingStrategy::Flood => {
                let peers = self.peers.read().await;
                Ok(peers.iter().cloned().collect())
            }
            RoutingStrategy::RandomSubset(count) => {
                let peers = self.peers.read().await;
                let mut rng = thread_rng();
                let selected: Vec<_> = peers
                    .iter()
                    .choose_multiple(&mut rng, count)
                    .into_iter()
                    .cloned()
                    .collect();
                Ok(selected)
            }
        }
    }

    /// Route a message anonymously using ML-KEM onion routing
    async fn route_anonymous(
        &self,
        message: &NetworkMessage,
        hops: usize,
    ) -> Result<Vec<PeerId>, NetworkError> {
        // Ensure we have at least 3 hops for anonymity
        let actual_hops = hops.max(3);
        let peers = self.peers.read().await;

        // Filter out source and destination from available peers
        let source_peer = if message.source.len() == 32 {
            let mut bytes = [0u8; 32];
            bytes.copy_from_slice(&message.source);
            Some(PeerId::from_bytes(bytes))
        } else {
            None
        };

        let dest_peer = if message.destination.len() == 32 {
            let mut bytes = [0u8; 32];
            bytes.copy_from_slice(&message.destination);
            Some(PeerId::from_bytes(bytes))
        } else {
            None
        };

        let available_peers: Vec<_> = peers
            .iter()
            .filter(|&&p| Some(p) != source_peer && Some(p) != dest_peer)
            .cloned()
            .collect();

        if available_peers.len() < hops {
            return Err(NetworkError::RoutingError(
                "Not enough peers for anonymous routing".into(),
            ));
        }

        // Build a circuit using the circuit manager
        let mut circuit_mgr = self.circuit_manager.lock().await;
        let circuit_id = circuit_mgr
            .build_circuit(actual_hops, &self.directory_client)
            .await
            .map_err(|e| NetworkError::RoutingError(format!("Circuit build failed: {:?}", e)))?;

        // Activate the circuit
        circuit_mgr.activate_circuit(circuit_id).map_err(|e| {
            NetworkError::RoutingError(format!("Circuit activation failed: {:?}", e))
        })?;

        // Get circuit hops
        let circuit = circuit_mgr
            .get_active_circuit()
            .ok_or_else(|| NetworkError::RoutingError("No active circuit available".into()))?;

        // Create onion layers for the message
        let onion_router = self.onion_router.lock().await;
        let _layers = onion_router
            .encrypt_layers(message.payload.clone(), circuit.hops.clone())
            .await
            .map_err(|e| NetworkError::RoutingError(format!("Onion encryption failed: {:?}", e)))?;

        // Convert node IDs to PeerIds for routing
        let route: Vec<PeerId> = circuit
            .hops
            .iter()
            .filter_map(|node_id| {
                if node_id.len() == 32 {
                    let mut peer_id_bytes = [0u8; 32];
                    peer_id_bytes.copy_from_slice(&node_id[..32]);
                    Some(PeerId::from_bytes(peer_id_bytes))
                } else {
                    None
                }
            })
            .collect();

        // Update circuit metrics
        circuit_mgr.update_circuit_metrics(circuit_id, message.payload.len() as u64, true);

        Ok(route)
    }

    /// Update hop knowledge to simulate onion routing properties
    #[allow(dead_code)]
    async fn update_hop_knowledge(&self, route: &[PeerId]) {
        let mut hop_info = self.hop_info.write().await;

        for (i, &peer_id) in route.iter().enumerate() {
            if let Some(info) = hop_info.get_mut(&peer_id) {
                // Clear previous knowledge
                info.known_peers.clear();

                // Each hop only knows about its immediate neighbors
                if i > 0 {
                    info.known_peers.insert(route[i - 1]);
                }
                if i < route.len() - 1 {
                    info.known_peers.insert(route[i + 1]);
                }

                // Update layer keys - each hop can only decrypt its own layer
                info.layer_keys.clear();
                info.layer_keys.insert(i, vec![i as u8; 32]);
            }
        }
    }

    /// Get hop information for a peer
    pub async fn get_hop_info(&self, peer_id: &PeerId) -> Result<HopInfo, NetworkError> {
        let hop_info = self.hop_info.read().await;
        hop_info
            .get(peer_id)
            .cloned()
            .ok_or_else(|| NetworkError::RoutingError("Hop information not found".into()))
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::types::MessagePriority;
    use std::time::Duration;

    #[tokio::test]
    async fn test_router_creation() {
        let router = Router::new().await.unwrap();
        let peers = router.peers.read().await;
        assert!(peers.is_empty());
    }

    #[tokio::test]
    async fn test_add_peer() {
        let router = Router::new().await.unwrap();
        let peer_id = PeerId::random();

        router.add_peer(peer_id).await;

        let peers = router.peers.read().await;
        assert!(peers.contains(&peer_id));
    }

    #[tokio::test]
    async fn test_anonymous_routing() {
        let router = Router::new().await.unwrap();

        // Add test peers
        let peers: Vec<_> = (0..5).map(|_| PeerId::random()).collect();
        for peer in &peers {
            router.add_peer(*peer).await;
        }

        // Create test message
        let msg = NetworkMessage {
            id: "test".into(),
            source: peers[0].to_bytes().to_vec(),
            destination: peers[4].to_bytes().to_vec(),
            payload: vec![1, 2, 3],
            priority: MessagePriority::High,
            ttl: Duration::from_secs(60),
        };

        // Test anonymous routing
        let route = router
            .route(&msg, RoutingStrategy::Anonymous { hops: 3 })
            .await
            .unwrap();

        assert_eq!(route.len(), 3);
        assert!(!route.contains(&peers[0])); // Should not include source
        assert!(!route.contains(&peers[4])); // Should not include destination
    }
}