Skip to content

Commit

Permalink
Store libp2p key in keystore
Browse files Browse the repository at this point in the history
  • Loading branch information
@magik6k
magik6k committed Oct 3, 2019
1 parent 51f0302 commit 6a4a8f6
Show file tree
Hide file tree
Showing 7 changed files with 75 additions and 94 deletions.
2 changes: 1 addition & 1 deletion build/paramfetch.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ type paramFile struct {
}

func GetParams(storage bool) error {
if err := os.Mkdir(paramdir, 0755); err != nil {
if err := os.Mkdir(paramdir, 0755); err != nil && !os.IsExist(err) {
return err
}

Expand Down
30 changes: 29 additions & 1 deletion cmd/lotus-storage-miner/init.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@ package main

import (
"context"
"crypto/rand"
"github.com/libp2p/go-libp2p-core/crypto"

"github.com/ipfs/go-datastore"
"github.com/libp2p/go-libp2p-core/peer"
Expand Down Expand Up @@ -101,7 +103,7 @@ var initCmd = &cli.Command{

log.Info("Initializing libp2p identity")

p2pSk, err := lr.Libp2pIdentity()
p2pSk, err := makeHostKey(lr)
if err != nil {
return err
}
Expand Down Expand Up @@ -147,6 +149,32 @@ var initCmd = &cli.Command{
},
}

func makeHostKey(lr repo.LockedRepo) (crypto.PrivKey, error) {
pk, _, err := crypto.GenerateEd25519Key(rand.Reader)
if err != nil {
return nil, err
}

ks, err := lr.KeyStore()
if err != nil {
return nil, err
}

kbytes, err := pk.Bytes()
if err != nil {
return nil, err
}

if err := ks.Put("libp2p-host", types.KeyInfo{
Type: "libp2p-host",
PrivateKey: kbytes,
}); err != nil {
return nil, err
}

return pk, nil
}

func configureStorageMiner(ctx context.Context, api api.FullNode, addr address.Address, peerid peer.ID, genmine bool) error {
if genmine {
log.Warn("Starting genesis mining. This shouldn't happen when connecting to the real network.")
Expand Down
6 changes: 1 addition & 5 deletions node/builder.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -302,10 +302,6 @@ func Repo(r repo.Repo) Option {
if err != nil {
return Error(err)
}
pk, err := lr.Libp2pIdentity()
if err != nil {
return Error(err)
}

return Options(
Config(cfg),
Expand All @@ -318,7 +314,7 @@ func Repo(r repo.Repo) Option {
Override(new(dtypes.ClientBlockstore), modules.ClientBlockstore),
Override(new(dtypes.ClientDAG), modules.ClientDAG),

Override(new(ci.PrivKey), pk),
Override(new(ci.PrivKey), lp2p.PrivKey),
Override(new(ci.PubKey), ci.PrivKey.GetPublic),
Override(new(peer.ID), peer.IDFromPublicKey),

Expand Down
41 changes: 41 additions & 0 deletions node/modules/lp2p/libp2p.go
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,10 @@
package lp2p

import (
"crypto/rand"
"github.com/filecoin-project/go-lotus/chain/types"
"github.com/filecoin-project/go-lotus/node/repo"
"golang.org/x/xerrors"
"time"

logging "github.com/ipfs/go-log"
Expand All @@ -14,12 +18,49 @@ import (

var log = logging.Logger("p2pnode")

const kstorePrivkey = "libp2p-host"

type Libp2pOpts struct {
fx.Out

Opts []libp2p.Option `group:"libp2p"`
}

func PrivKey(ks types.KeyStore) (crypto.PrivKey, error) {
k, err := ks.Get(kstorePrivkey)
if err == nil {
return crypto.UnmarshalPrivateKey(k.PrivateKey)
}
if !xerrors.Is(err, repo.ErrKeyNotFound) {
return nil, err
}
pk, err := genLibp2pKey()
if err != nil {
return nil, err
}
kbytes, err := pk.Bytes()
if err != nil {
return nil, err
}

if err := ks.Put(kstorePrivkey, types.KeyInfo{
Type: kstorePrivkey,
PrivateKey: kbytes,
}); err != nil {
return nil, err
}

return pk, nil
}

func genLibp2pKey() (crypto.PrivKey, error) {
pk, _, err := crypto.GenerateEd25519Key(rand.Reader)
if err != nil {
return nil, err
}
return pk, nil
}

// Misc options

func ConnectionManager(low, high int, grace time.Duration) func() (opts Libp2pOpts, err error) {
Expand Down
53 changes: 0 additions & 53 deletions node/repo/fsrepo.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,6 @@ import (
badger "github.com/ipfs/go-ds-badger"
fslock "github.com/ipfs/go-fs-lock"
logging "github.com/ipfs/go-log"
"github.com/libp2p/go-libp2p-core/crypto"
"github.com/mitchellh/go-homedir"
"github.com/multiformats/go-base32"
"github.com/multiformats/go-multiaddr"
Expand Down Expand Up @@ -224,58 +223,6 @@ func (fsr *fsLockedRepo) Config() (*config.Root, error) {
return config.FromFile(fsr.join(fsConfig))
}

func (fsr *fsLockedRepo) Libp2pIdentity() (crypto.PrivKey, error) {
if err := fsr.stillValid(); err != nil {
return nil, err
}
kpath := fsr.join(fsLibp2pKey)
stat, err := os.Stat(kpath)

if os.IsNotExist(err) {
pk, err := genLibp2pKey()
if err != nil {
return nil, xerrors.Errorf("could not generate private key: %w", err)
}
pkb, err := pk.Bytes()
if err != nil {
return nil, xerrors.Errorf("could not serialize private key: %w", err)
}
err = ioutil.WriteFile(kpath, pkb, 0600)
if err != nil {
return nil, xerrors.Errorf("could not write private key: %w", err)
}
} else if err != nil {
return nil, err
}

stat, err = os.Stat(kpath)
if err != nil {
return nil, err
}

if stat.Mode()&0066 != 0 {
return nil, xerrors.New("libp2p identity has too wide access permissions, " +
fsLibp2pKey + " should have permission 0600")
}

f, err := os.Open(kpath)
if err != nil {
return nil, xerrors.Errorf("could not open private key file: %w", err)
}
defer f.Close() //nolint: errcheck // read-only op

pkbytes, err := ioutil.ReadAll(f)
if err != nil {
return nil, xerrors.Errorf("could not read private key file: %w", err)
}

pk, err := crypto.UnmarshalPrivateKey(pkbytes)
if err != nil {
return nil, xerrors.Errorf("could not unmarshal private key: %w", err)
}
return pk, nil
}

func (fsr *fsLockedRepo) SetAPIEndpoint(ma multiaddr.Multiaddr) error {
if err := fsr.stillValid(); err != nil {
return err
Expand Down
4 changes: 0 additions & 4 deletions node/repo/interface.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,6 @@ import (
"errors"

"github.com/ipfs/go-datastore"
"github.com/libp2p/go-libp2p-core/crypto"
"github.com/multiformats/go-multiaddr"

"github.com/filecoin-project/go-lotus/chain/types"
Expand Down Expand Up @@ -42,9 +41,6 @@ type LockedRepo interface {
// Returns config in this repo
Config() (*config.Root, error)

// Libp2pIdentity returns private key for libp2p indentity
Libp2pIdentity() (crypto.PrivKey, error)

// SetAPIEndpoint sets the endpoint of the current API
// so it can be read by API clients
SetAPIEndpoint(multiaddr.Multiaddr) error
Expand Down
33 changes: 3 additions & 30 deletions node/repo/memrepo.go
View file
Original file line number Diff line number Diff line change
@@ -1,13 +1,11 @@
package repo

import (
"crypto/rand"
"sync"

"github.com/ipfs/go-datastore"
"github.com/ipfs/go-datastore/namespace"
dssync "github.com/ipfs/go-datastore/sync"
"github.com/libp2p/go-libp2p-core/crypto"
"github.com/multiformats/go-multiaddr"
"golang.org/x/xerrors"

Expand All @@ -27,7 +25,6 @@ type MemRepo struct {

datastore datastore.Datastore
configF func() *config.Root
libp2pKey crypto.PrivKey
keystore map[string]types.KeyInfo
}

Expand All @@ -46,18 +43,9 @@ var _ Repo = &MemRepo{}

// MemRepoOptions contains options for memory repo
type MemRepoOptions struct {
Ds datastore.Datastore
ConfigF func() *config.Root
Libp2pKey crypto.PrivKey
KeyStore map[string]types.KeyInfo
}

func genLibp2pKey() (crypto.PrivKey, error) {
pk, _, err := crypto.GenerateEd25519Key(rand.Reader)
if err != nil {
return nil, err
}
return pk, nil
Ds datastore.Datastore
ConfigF func() *config.Root
KeyStore map[string]types.KeyInfo
}

// NewMemory creates new memory based repo with provided options.
Expand All @@ -73,13 +61,6 @@ func NewMemory(opts *MemRepoOptions) *MemRepo {
if opts.Ds == nil {
opts.Ds = dssync.MutexWrap(datastore.NewMapDatastore())
}
if opts.Libp2pKey == nil {
pk, err := genLibp2pKey()
if err != nil {
panic(err)
}
opts.Libp2pKey = pk
}
if opts.KeyStore == nil {
opts.KeyStore = make(map[string]types.KeyInfo)
}
Expand All @@ -89,7 +70,6 @@ func NewMemory(opts *MemRepoOptions) *MemRepo {

datastore: opts.Ds,
configF: opts.ConfigF,
libp2pKey: opts.Libp2pKey,
keystore: opts.KeyStore,
}
}
Expand Down Expand Up @@ -170,13 +150,6 @@ func (lmem *lockedMemRepo) Config() (*config.Root, error) {
return lmem.mem.configF(), nil
}

func (lmem *lockedMemRepo) Libp2pIdentity() (crypto.PrivKey, error) {
if err := lmem.checkToken(); err != nil {
return nil, err
}
return lmem.mem.libp2pKey, nil
}

func (lmem *lockedMemRepo) SetAPIEndpoint(ma multiaddr.Multiaddr) error {
if err := lmem.checkToken(); err != nil {
return err
Expand Down

0 comments on commit 6a4a8f6

Please sign in to comment.