351 lines
12 KiB
Python
Executable file
351 lines
12 KiB
Python
Executable file
#!/bin/python3
|
|
from collections import namedtuple
|
|
import json, uuid, requests, hashlib
|
|
from pprint import pprint
|
|
|
|
CURRENT_VERSION = 1
|
|
|
|
WalletState = namedtuple('WalletState', ['sequence', 'encrypted_wallet'])
|
|
|
|
class LBRYSDK():
|
|
# TODO - error checking
|
|
@staticmethod
|
|
def get_wallet(wallet_id, password):
|
|
response = requests.post('http://localhost:5279', json.dumps({
|
|
"method": "sync_apply",
|
|
"params": {
|
|
"password": password,
|
|
"wallet_id": wallet_id,
|
|
},
|
|
}))
|
|
return response.json()['result']['data']
|
|
|
|
# TODO - error checking
|
|
@staticmethod
|
|
def update_wallet(wallet_id, password, data):
|
|
response = requests.post('http://localhost:5279', json.dumps({
|
|
"method": "sync_apply",
|
|
"params": {
|
|
"data": data,
|
|
"password": password,
|
|
"wallet_id": wallet_id,
|
|
},
|
|
}))
|
|
return response.json()['result']['data']
|
|
|
|
# TODO - error checking
|
|
@staticmethod
|
|
def set_preference(key, value):
|
|
response = requests.post('http://localhost:5279', json.dumps({
|
|
"method": "preference_set",
|
|
"params": {
|
|
"key": key,
|
|
"value": value,
|
|
},
|
|
}))
|
|
return response.json()['result']
|
|
|
|
# TODO - error checking
|
|
@staticmethod
|
|
def get_preferences():
|
|
response = requests.post('http://localhost:5279', json.dumps({
|
|
"method": "preference_get",
|
|
"params": {},
|
|
}))
|
|
return response.json()['result']
|
|
|
|
class WalletSync():
|
|
BASE_URL = 'http://localhost:8090'
|
|
AUTH_URL = BASE_URL + '/auth/full'
|
|
REGISTER_URL = BASE_URL + '/signup'
|
|
WALLET_URL = BASE_URL + '/wallet'
|
|
|
|
@classmethod
|
|
def register(cls, email, password):
|
|
body = json.dumps({
|
|
'email': email,
|
|
'password': password,
|
|
})
|
|
response = requests.post(cls.REGISTER_URL, body)
|
|
if response.status_code != 201:
|
|
print ('Error', response.status_code)
|
|
print (response.content)
|
|
return False
|
|
return True
|
|
|
|
@classmethod
|
|
def get_auth_token(cls, email, password, device_id):
|
|
body = json.dumps({
|
|
'email': email,
|
|
'password': password,
|
|
'deviceId': device_id,
|
|
})
|
|
response = requests.post(cls.AUTH_URL, body)
|
|
if response.status_code != 200:
|
|
print ('Error', response.status_code)
|
|
print (response.content)
|
|
return None
|
|
|
|
return response.json()['token']
|
|
|
|
@classmethod
|
|
def get_wallet(cls, token):
|
|
params = {
|
|
'token': token,
|
|
}
|
|
response = requests.get(cls.WALLET_URL, params=params)
|
|
|
|
# TODO check response version on client side now
|
|
if response.status_code == 404:
|
|
print ('Wallet not found')
|
|
# "No wallet" is not an error, so no exception raised
|
|
return None, None
|
|
|
|
if response.status_code != 200:
|
|
print ('Error', response.status_code)
|
|
print (response.content)
|
|
raise Exception("Unexpected status code")
|
|
|
|
wallet_state = WalletState(
|
|
encrypted_wallet=response.json()['encryptedWallet'],
|
|
sequence=response.json()['sequence'],
|
|
)
|
|
hmac = response.json()['hmac']
|
|
return wallet_state, hmac
|
|
|
|
@classmethod
|
|
def update_wallet(cls, wallet_state, hmac, token):
|
|
body = json.dumps({
|
|
'version': CURRENT_VERSION,
|
|
'token': token,
|
|
"encryptedWallet": wallet_state.encrypted_wallet,
|
|
"sequence": wallet_state.sequence,
|
|
"hmac": hmac,
|
|
})
|
|
|
|
response = requests.post(cls.WALLET_URL, body)
|
|
|
|
# TODO check that response.json().version == CURRENT_VERSION
|
|
|
|
if response.status_code == 200:
|
|
conflict = False
|
|
print ('Successfully updated wallet state on server')
|
|
elif response.status_code == 409:
|
|
conflict = True
|
|
print ('Wallet state out of date. Getting updated wallet state. Try posting again after this.')
|
|
# Not an error! We still want to merge in the returned wallet.
|
|
else:
|
|
print ('Error', response.status_code)
|
|
print (response.content)
|
|
raise Exception("Unexpected status code")
|
|
|
|
wallet_state = WalletState(
|
|
encrypted_wallet=response.json()['encryptedWallet'],
|
|
sequence=response.json()['sequence'],
|
|
)
|
|
hmac = response.json()['hmac']
|
|
return wallet_state, hmac, conflict
|
|
|
|
# TODO - do this correctly. This is a hack example.
|
|
def derive_login_password(root_password):
|
|
return hashlib.sha256(('login:' + root_password).encode('utf-8')).hexdigest()
|
|
|
|
# TODO - do this correctly. This is a hack example.
|
|
def derive_sdk_password(root_password):
|
|
return hashlib.sha256(('sdk:' + root_password).encode('utf-8')).hexdigest()
|
|
|
|
# TODO - do this correctly. This is a hack example.
|
|
# TODO - wallet_id in this? or in all of the derivations?
|
|
def derive_hmac_key(root_password):
|
|
return hashlib.sha256(('hmac:' + root_password).encode('utf-8')).hexdigest()
|
|
|
|
# TODO - do this correctly. This is a hack example.
|
|
def create_hmac(wallet_state, hmac_key):
|
|
input_str = hmac_key + ':' + str(wallet_state.sequence) + ':' + wallet_state.encrypted_wallet
|
|
return hashlib.sha256(input_str.encode('utf-8')).hexdigest()
|
|
|
|
def check_hmac(wallet_state, hmac_key, hmac):
|
|
return hmac == create_hmac(wallet_state, hmac_key)
|
|
|
|
class Client():
|
|
# If you want to get the lastSynced stuff back, see:
|
|
# 512ebe3e95bf4e533562710a7f91c59616a9a197
|
|
# It's mostly simple, but the _validate_new_wallet_state changes may be worth
|
|
# looking at.
|
|
def _validate_new_wallet_state(self, new_wallet_state):
|
|
if self.synced_wallet_state is None:
|
|
# All of the validations here are in reference to what the device already
|
|
# has. If this device is getting a wallet state for the first time, there
|
|
# is no basis for comparison.
|
|
return True
|
|
|
|
# Make sure that the new sequence is overall later.
|
|
if new_wallet_state.sequence <= self.synced_wallet_state.sequence:
|
|
return False
|
|
|
|
return True
|
|
|
|
def __init__(self, email, root_password, wallet_id='default_wallet'):
|
|
# Represents normal client behavior (though a real client will of course save device id)
|
|
self.device_id = str(uuid.uuid4())
|
|
|
|
self.auth_token = 'bad token'
|
|
|
|
self.synced_wallet_state = None
|
|
|
|
self.email = email
|
|
self.root_password = root_password
|
|
self.wallet_id = wallet_id
|
|
|
|
# TODO - This does not deal with the question of tying accounts to wallets.
|
|
# Does a new wallet state mean a we're creating a new account? What happens
|
|
# if we create a new wallet state tied to an existing account? Do we merge it
|
|
# with what's on the server anyway? Do we refuse to merge, or warn the user?
|
|
# Etc. This sort of depends on how the LBRY Desktop/SDK usually behave. For
|
|
# now, it'll end up just merging any un-saved local changes with whatever is
|
|
# on the server.
|
|
|
|
# TODO - Later, we should be saving the synced_wallet_state to disk, or
|
|
# something like that, so we know whether there are unpushed changes on
|
|
# startup (which should be uncommon but possible if crash or network problem
|
|
# in previous run). This will be important when the client is responsible for
|
|
# merging what comes from the server with those local unpushed changes. For
|
|
# now, the SDK handles merges with timestamps and such so it's as safe as
|
|
# always to just merge in.
|
|
|
|
# TODO - Be careful of cases where get_remote_wallet comes back with "Not
|
|
# Found" even though a wallet is actually on the server. We would start with
|
|
# sequence=0 with the local encrypted wallet. Then next time we
|
|
# get_remote_wallet, it returns the actual wallet, let's say sequence=5, and
|
|
# it would write over what's locally saved. With the SDK as it is using
|
|
# sync_apply, that's okay because it has a decent way of merging it. However
|
|
# when the Desktop is in charge of merging, this could be a hazard. Saving
|
|
# the state to disk could help. Or perhaps pushing first before pulling. Or
|
|
# maybe if we're writing over sequence=0, we can know we should be "merging"
|
|
# the local encrypted wallet with whatever comes from the server.
|
|
def init_wallet_state(self):
|
|
if self.get_remote_wallet() == "Not Found":
|
|
print("No wallet found on the server for this account. Starting a new one.")
|
|
|
|
# Represents what's been synced to the wallet sync server. It starts with
|
|
# sequence=0 which means nothing has been synced yet. We start with
|
|
# whatever is in the SDK. Whether it's new or not, we (who choose to run
|
|
# this method) are assuming it's not synced yet.
|
|
self.synced_wallet_state = WalletState(
|
|
sequence=0,
|
|
encrypted_wallet=self.get_local_encrypted_wallet()
|
|
)
|
|
|
|
def register(self):
|
|
success = WalletSync.register(
|
|
self.email,
|
|
derive_login_password(self.root_password),
|
|
)
|
|
if success:
|
|
print ("Registered")
|
|
|
|
def get_auth_token(self):
|
|
token = WalletSync.get_auth_token(
|
|
self.email,
|
|
derive_login_password(self.root_password),
|
|
self.device_id,
|
|
)
|
|
if not token:
|
|
return
|
|
self.auth_token = token
|
|
print ("Got auth token: ", self.auth_token)
|
|
|
|
# TODO - What about cases where we are managing multiple different wallets?
|
|
# Some will have lower sequences. If you accidentally mix it up client-side,
|
|
# you might end up overwriting one wallet with another if the former has a
|
|
# higher sequence number. Maybe we want to annotate them with which account
|
|
# we're talking about. Again, we should see how LBRY Desktop/SDK deal with
|
|
# it.
|
|
|
|
# Returns: status
|
|
def get_remote_wallet(self):
|
|
new_wallet_state, hmac = WalletSync.get_wallet(self.auth_token)
|
|
|
|
if not new_wallet_state:
|
|
# Wallet not found, but this is not an error
|
|
return "Not Found"
|
|
|
|
hmac_key = derive_hmac_key(self.root_password)
|
|
if not check_hmac(new_wallet_state, hmac_key, hmac):
|
|
print ('Error - bad hmac on new wallet')
|
|
print (new_wallet_state, hmac)
|
|
return "Error"
|
|
|
|
if self.synced_wallet_state != new_wallet_state and not self._validate_new_wallet_state(new_wallet_state):
|
|
print ('Error - new wallet does not validate')
|
|
print ('current:', self.synced_wallet_state)
|
|
print ('got:', new_wallet_state)
|
|
return "Error"
|
|
|
|
self.synced_wallet_state = new_wallet_state
|
|
# TODO errors? sequence of events? This isn't gonna be quite right. Look at state diagrams.
|
|
self.update_local_encrypted_wallet(new_wallet_state.encrypted_wallet)
|
|
|
|
print ("Got latest walletState:")
|
|
pprint(self.synced_wallet_state)
|
|
return "Success"
|
|
|
|
# Returns: status
|
|
def update_remote_wallet(self):
|
|
# Create a *new* wallet state, indicating that it was last updated by this
|
|
# device, with the updated sequence, and include our local encrypted wallet changes.
|
|
# Don't set self.synced_wallet_state to this until we know that it's accepted by
|
|
# the server.
|
|
if not self.synced_wallet_state:
|
|
print ("No wallet state to post.")
|
|
return "Error"
|
|
|
|
hmac_key = derive_hmac_key(self.root_password)
|
|
|
|
submitted_wallet_state = WalletState(
|
|
encrypted_wallet=self.get_local_encrypted_wallet(),
|
|
sequence=self.synced_wallet_state.sequence + 1
|
|
)
|
|
hmac = create_hmac(submitted_wallet_state, hmac_key)
|
|
|
|
# Submit our wallet, get the latest wallet back as a response
|
|
new_wallet_state, new_hmac, conflict = WalletSync.update_wallet(submitted_wallet_state, hmac, self.auth_token)
|
|
|
|
# TODO - there's some code in common here with the get_remote_wallet function. factor it out.
|
|
|
|
if not check_hmac(new_wallet_state, hmac_key, new_hmac):
|
|
print ('Error - bad hmac on new wallet')
|
|
print (new_wallet_state, hmac)
|
|
return "Error"
|
|
|
|
if submitted_wallet_state != new_wallet_state and not self._validate_new_wallet_state(new_wallet_state):
|
|
print ('Error - new wallet does not validate')
|
|
print ('current:', self.synced_wallet_state)
|
|
print ('got:', new_wallet_state)
|
|
return "Error"
|
|
|
|
# TODO - `concflict` determines whether we need to a smart merge here.
|
|
# However for now the SDK handles all of that.
|
|
self.synced_wallet_state = new_wallet_state
|
|
# TODO errors? sequence of events? This isn't gonna be quite right. Look at state diagrams.
|
|
self.update_local_encrypted_wallet(new_wallet_state.encrypted_wallet)
|
|
|
|
print ("Got new walletState:")
|
|
pprint(self.synced_wallet_state)
|
|
return "Success"
|
|
|
|
def set_preference(self, key, value):
|
|
# TODO - error checking
|
|
return LBRYSDK.set_preference(key, value)
|
|
|
|
def get_preferences(self):
|
|
# TODO - error checking
|
|
return LBRYSDK.get_preferences()
|
|
|
|
def update_local_encrypted_wallet(self, encrypted_wallet):
|
|
# TODO - error checking
|
|
return LBRYSDK.update_wallet(self.wallet_id, derive_sdk_password(self.root_password), encrypted_wallet)
|
|
|
|
def get_local_encrypted_wallet(self):
|
|
# TODO - error checking
|
|
return LBRYSDK.get_wallet(self.wallet_id, derive_sdk_password(self.root_password))
|