2012-01-19 17:11:36 +01:00
|
|
|
#!/usr/bin/env python
|
|
|
|
|
#
|
|
|
|
|
# Electrum - lightweight Bitcoin client
|
|
|
|
|
# Copyright (C) 2011 thomasv@gitorious
|
|
|
|
|
#
|
2016-02-23 11:36:42 +01:00
|
|
|
# Permission is hereby granted, free of charge, to any person
|
|
|
|
|
# obtaining a copy of this software and associated documentation files
|
|
|
|
|
# (the "Software"), to deal in the Software without restriction,
|
|
|
|
|
# including without limitation the rights to use, copy, modify, merge,
|
|
|
|
|
# publish, distribute, sublicense, and/or sell copies of the Software,
|
|
|
|
|
# and to permit persons to whom the Software is furnished to do so,
|
|
|
|
|
# subject to the following conditions:
|
2012-01-19 17:11:36 +01:00
|
|
|
#
|
2016-02-23 11:36:42 +01:00
|
|
|
# The above copyright notice and this permission notice shall be
|
|
|
|
|
# included in all copies or substantial portions of the Software.
|
2012-01-19 17:11:36 +01:00
|
|
|
#
|
2016-02-23 11:36:42 +01:00
|
|
|
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
|
|
|
|
# EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
|
|
|
# MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
|
|
|
|
# NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
|
|
|
|
|
# BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
|
|
|
|
|
# ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
|
|
|
|
|
# CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
|
|
|
# SOFTWARE.
|
2015-06-03 00:03:33 +09:00
|
|
|
import os
|
|
|
|
|
import re
|
2013-10-01 11:24:55 +02:00
|
|
|
import ssl
|
2015-06-03 00:03:33 +09:00
|
|
|
import sys
|
|
|
|
|
import traceback
|
2018-08-16 18:16:25 +02:00
|
|
|
import asyncio
|
2018-09-09 23:08:44 +02:00
|
|
|
from typing import Tuple, Union
|
2012-02-03 15:45:41 +01:00
|
|
|
|
2018-09-09 01:15:06 +02:00
|
|
|
import aiorpcx
|
2018-09-11 20:24:01 +02:00
|
|
|
from aiorpcx import ClientSession, Notification
|
2017-01-30 12:36:56 +03:00
|
|
|
|
2018-09-11 20:24:01 +02:00
|
|
|
from .util import PrintError, aiosafe, bfh, AIOSafeSilentException, CustomTaskGroup
|
2017-01-22 21:25:24 +03:00
|
|
|
from . import util
|
|
|
|
|
from . import x509
|
|
|
|
|
from . import pem
|
2018-08-16 18:16:25 +02:00
|
|
|
from .version import ELECTRUM_VERSION, PROTOCOL_VERSION
|
2018-08-29 18:41:51 +02:00
|
|
|
from . import blockchain
|
2018-09-09 05:00:09 +02:00
|
|
|
from . import constants
|
2018-09-06 15:53:41 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
class NotificationSession(ClientSession):
|
|
|
|
|
|
2018-09-11 14:57:59 +02:00
|
|
|
def __init__(self, *args, **kwargs):
|
2018-09-06 15:53:41 +02:00
|
|
|
super(NotificationSession, self).__init__(*args, **kwargs)
|
2018-09-11 14:57:59 +02:00
|
|
|
self.subscriptions = {}
|
|
|
|
|
self.cache = {}
|
2018-09-06 15:53:41 +02:00
|
|
|
|
|
|
|
|
async def handle_request(self, request):
|
2018-09-10 17:12:05 +02:00
|
|
|
# note: if server sends malformed request and we raise, the superclass
|
|
|
|
|
# will catch the exception, count errors, and at some point disconnect
|
2018-09-06 15:53:41 +02:00
|
|
|
if isinstance(request, Notification):
|
2018-09-11 14:57:59 +02:00
|
|
|
params, result = request.args[:-1], request.args[-1]
|
|
|
|
|
key = request.method + repr(params)
|
|
|
|
|
if key in self.subscriptions:
|
|
|
|
|
self.cache[key] = result
|
|
|
|
|
for queue in self.subscriptions[key]:
|
|
|
|
|
await queue.put(request.args)
|
2018-09-06 15:53:41 +02:00
|
|
|
else:
|
|
|
|
|
assert False, request.method
|
|
|
|
|
|
2018-09-10 17:12:05 +02:00
|
|
|
async def send_request(self, *args, timeout=-1, **kwargs):
|
|
|
|
|
if timeout == -1:
|
|
|
|
|
timeout = 20 if not self.proxy else 30
|
|
|
|
|
return await asyncio.wait_for(
|
|
|
|
|
super().send_request(*args, **kwargs),
|
|
|
|
|
timeout)
|
|
|
|
|
|
2018-09-11 14:57:59 +02:00
|
|
|
async def subscribe(self, method, params, queue):
|
|
|
|
|
key = method + repr(params)
|
|
|
|
|
if key in self.subscriptions:
|
|
|
|
|
self.subscriptions[key].append(queue)
|
|
|
|
|
result = self.cache[key]
|
|
|
|
|
else:
|
|
|
|
|
result = await self.send_request(method, params)
|
|
|
|
|
self.subscriptions[key] = [queue]
|
|
|
|
|
self.cache[key] = result
|
|
|
|
|
await queue.put(params + [result])
|
|
|
|
|
|
2018-09-11 20:24:01 +02:00
|
|
|
def unsubscribe(self, queue):
|
|
|
|
|
"""Unsubscribe a callback to free object references to enable GC."""
|
|
|
|
|
# note: we can't unsubscribe from the server, so we keep receiving
|
|
|
|
|
# subsequent notifications
|
|
|
|
|
for v in self.subscriptions.values():
|
|
|
|
|
if queue in v:
|
|
|
|
|
v.remove(queue)
|
|
|
|
|
|
2012-10-11 20:10:12 +02:00
|
|
|
|
2018-09-07 20:26:45 +02:00
|
|
|
# FIXME this is often raised inside a TaskGroup, but then it's not silent :(
|
2018-09-06 16:45:43 +02:00
|
|
|
class GracefulDisconnect(AIOSafeSilentException): pass
|
|
|
|
|
|
|
|
|
|
|
2018-09-09 22:01:55 +02:00
|
|
|
class ErrorParsingSSLCert(Exception): pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class ErrorGettingSSLCertFromServer(Exception): pass
|
|
|
|
|
|
|
|
|
|
|
2018-09-08 01:34:33 +02:00
|
|
|
|
2018-09-10 00:59:53 +02:00
|
|
|
def deserialize_server(server_str: str) -> Tuple[str, str, str]:
|
2018-09-09 23:08:44 +02:00
|
|
|
# host might be IPv6 address, hence do rsplit:
|
|
|
|
|
host, port, protocol = str(server_str).rsplit(':', 2)
|
|
|
|
|
if protocol not in ('s', 't'):
|
|
|
|
|
raise ValueError('invalid network protocol: {}'.format(protocol))
|
2018-09-10 00:59:53 +02:00
|
|
|
int(port) # Throw if cannot be converted to int
|
|
|
|
|
if not (0 < int(port) < 2**16):
|
2018-09-09 23:08:44 +02:00
|
|
|
raise ValueError('port {} is out of valid range'.format(port))
|
|
|
|
|
return host, port, protocol
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def serialize_server(host: str, port: Union[str, int], protocol: str) -> str:
|
|
|
|
|
return str(':'.join([host, str(port), protocol]))
|
|
|
|
|
|
|
|
|
|
|
2018-08-16 18:16:25 +02:00
|
|
|
class Interface(PrintError):
|
2013-10-02 09:22:13 +02:00
|
|
|
|
2018-08-29 18:41:51 +02:00
|
|
|
def __init__(self, network, server, config_path, proxy):
|
2018-08-27 20:39:36 +02:00
|
|
|
self.exception = None
|
2018-08-29 18:41:51 +02:00
|
|
|
self.ready = asyncio.Future()
|
2013-10-06 12:28:45 +02:00
|
|
|
self.server = server
|
2018-09-09 23:08:44 +02:00
|
|
|
self.host, self.port, self.protocol = deserialize_server(self.server)
|
2018-09-10 00:59:53 +02:00
|
|
|
self.port = int(self.port)
|
2018-08-16 18:16:25 +02:00
|
|
|
self.config_path = config_path
|
|
|
|
|
self.cert_path = os.path.join(self.config_path, 'certs', self.host)
|
2018-08-29 18:41:51 +02:00
|
|
|
self.blockchain = None
|
|
|
|
|
self.network = network
|
2018-09-07 19:34:28 +02:00
|
|
|
|
2018-09-11 11:44:49 +02:00
|
|
|
self.tip_header = None
|
|
|
|
|
self.tip = 0
|
|
|
|
|
|
2018-09-07 19:34:28 +02:00
|
|
|
# TODO combine?
|
|
|
|
|
self.fut = asyncio.get_event_loop().create_task(self.run())
|
2018-09-08 01:34:33 +02:00
|
|
|
self.group = CustomTaskGroup()
|
2018-09-07 19:34:28 +02:00
|
|
|
|
2018-08-27 20:39:36 +02:00
|
|
|
if proxy:
|
2018-08-29 18:59:47 +02:00
|
|
|
username, pw = proxy.get('user'), proxy.get('password')
|
|
|
|
|
if not username or not pw:
|
2018-08-27 20:39:36 +02:00
|
|
|
auth = None
|
2018-08-29 18:59:47 +02:00
|
|
|
else:
|
|
|
|
|
auth = aiorpcx.socks.SOCKSUserAuth(username, pw)
|
2018-08-27 20:39:36 +02:00
|
|
|
if proxy['mode'] == "socks4":
|
|
|
|
|
self.proxy = aiorpcx.socks.SOCKSProxy((proxy['host'], int(proxy['port'])), aiorpcx.socks.SOCKS4a, auth)
|
|
|
|
|
elif proxy['mode'] == "socks5":
|
|
|
|
|
self.proxy = aiorpcx.socks.SOCKSProxy((proxy['host'], int(proxy['port'])), aiorpcx.socks.SOCKS5, auth)
|
|
|
|
|
else:
|
2018-08-29 18:41:51 +02:00
|
|
|
raise NotImplementedError # http proxy not available with aiorpcx
|
2018-08-27 20:39:36 +02:00
|
|
|
else:
|
|
|
|
|
self.proxy = None
|
2013-10-01 09:01:46 +02:00
|
|
|
|
2015-09-06 21:40:00 +09:00
|
|
|
def diagnostic_name(self):
|
|
|
|
|
return self.host
|
2015-06-03 00:03:33 +09:00
|
|
|
|
2018-08-16 18:16:25 +02:00
|
|
|
async def is_server_ca_signed(self, sslc):
|
2014-09-19 09:25:44 +02:00
|
|
|
try:
|
2018-08-31 18:06:11 +02:00
|
|
|
await self.open_session(sslc, exit_early=True)
|
2018-08-16 18:16:25 +02:00
|
|
|
except ssl.SSLError as e:
|
|
|
|
|
assert e.reason == 'CERTIFICATE_VERIFY_FAILED'
|
|
|
|
|
return False
|
|
|
|
|
return True
|
2013-09-30 14:01:49 +02:00
|
|
|
|
2018-09-09 21:16:48 +02:00
|
|
|
async def _try_saving_ssl_cert_for_first_time(self, ca_ssl_context):
|
|
|
|
|
try:
|
|
|
|
|
ca_signed = await self.is_server_ca_signed(ca_ssl_context)
|
2018-09-10 01:09:35 +02:00
|
|
|
except (OSError, aiorpcx.socks.SOCKSFailure) as e:
|
2018-09-09 22:01:55 +02:00
|
|
|
raise ErrorGettingSSLCertFromServer(e) from e
|
2018-09-09 21:16:48 +02:00
|
|
|
if ca_signed:
|
|
|
|
|
with open(self.cert_path, 'w') as f:
|
|
|
|
|
# empty file means this is CA signed, not self-signed
|
|
|
|
|
f.write('')
|
|
|
|
|
else:
|
|
|
|
|
await self.save_certificate()
|
|
|
|
|
|
|
|
|
|
def _is_saved_ssl_cert_available(self):
|
|
|
|
|
if not os.path.exists(self.cert_path):
|
|
|
|
|
return False
|
|
|
|
|
with open(self.cert_path, 'r') as f:
|
|
|
|
|
contents = f.read()
|
|
|
|
|
if contents == '': # CA signed
|
|
|
|
|
return True
|
|
|
|
|
# pinned self-signed cert
|
|
|
|
|
try:
|
|
|
|
|
b = pem.dePem(contents, 'CERTIFICATE')
|
2018-09-09 22:01:55 +02:00
|
|
|
except SyntaxError as e:
|
2018-09-09 21:16:48 +02:00
|
|
|
self.print_error("error parsing already saved cert:", e)
|
2018-09-09 22:01:55 +02:00
|
|
|
raise ErrorParsingSSLCert(e) from e
|
2018-09-09 21:16:48 +02:00
|
|
|
try:
|
|
|
|
|
x = x509.X509(b)
|
|
|
|
|
except Exception as e:
|
|
|
|
|
self.print_error("error parsing already saved cert:", e)
|
2018-09-09 22:01:55 +02:00
|
|
|
raise ErrorParsingSSLCert(e) from e
|
2018-09-09 21:16:48 +02:00
|
|
|
try:
|
|
|
|
|
x.check_date()
|
|
|
|
|
return True
|
|
|
|
|
except x509.CertificateError as e:
|
|
|
|
|
self.print_error("certificate has expired:", e)
|
2018-09-09 22:01:55 +02:00
|
|
|
os.unlink(self.cert_path) # delete pinned cert only in this case
|
2018-09-09 21:16:48 +02:00
|
|
|
return False
|
|
|
|
|
|
2018-09-09 22:01:55 +02:00
|
|
|
async def _get_ssl_context(self):
|
2018-08-16 18:16:25 +02:00
|
|
|
if self.protocol != 's':
|
2018-09-09 22:01:55 +02:00
|
|
|
# using plaintext TCP
|
|
|
|
|
return None
|
2013-09-30 14:01:49 +02:00
|
|
|
|
2018-09-09 22:01:55 +02:00
|
|
|
# see if we already have cert for this server; or get it for the first time
|
2018-08-16 18:16:25 +02:00
|
|
|
ca_sslc = ssl.create_default_context(ssl.Purpose.SERVER_AUTH)
|
2018-09-09 21:16:48 +02:00
|
|
|
if not self._is_saved_ssl_cert_available():
|
2018-09-09 22:01:55 +02:00
|
|
|
await self._try_saving_ssl_cert_for_first_time(ca_sslc)
|
|
|
|
|
# now we have a file saved in our certificate store
|
2018-08-16 18:16:25 +02:00
|
|
|
siz = os.stat(self.cert_path).st_size
|
2018-09-09 21:16:48 +02:00
|
|
|
if siz == 0:
|
|
|
|
|
# CA signed cert
|
2018-08-16 18:16:25 +02:00
|
|
|
sslc = ca_sslc
|
|
|
|
|
else:
|
2018-09-09 21:16:48 +02:00
|
|
|
# pinned self-signed cert
|
2018-08-16 18:16:25 +02:00
|
|
|
sslc = ssl.create_default_context(ssl.Purpose.SERVER_AUTH, cafile=self.cert_path)
|
|
|
|
|
sslc.check_hostname = 0
|
2018-09-09 22:01:55 +02:00
|
|
|
return sslc
|
|
|
|
|
|
|
|
|
|
@aiosafe
|
|
|
|
|
async def run(self):
|
|
|
|
|
try:
|
|
|
|
|
ssl_context = await self._get_ssl_context()
|
|
|
|
|
except (ErrorParsingSSLCert, ErrorGettingSSLCertFromServer) as e:
|
|
|
|
|
self.exception = e
|
|
|
|
|
return
|
2018-09-06 16:45:43 +02:00
|
|
|
try:
|
2018-09-09 22:01:55 +02:00
|
|
|
await self.open_session(ssl_context, exit_early=False)
|
2018-09-10 01:09:35 +02:00
|
|
|
except (asyncio.CancelledError, OSError, aiorpcx.socks.SOCKSFailure) as e:
|
2018-09-10 02:30:27 +02:00
|
|
|
self.print_error('disconnecting due to: {} {}'.format(e, type(e)))
|
2018-09-06 16:45:43 +02:00
|
|
|
self.exception = e
|
|
|
|
|
return
|
|
|
|
|
# should never get here (can only exit via exception)
|
2018-08-27 20:39:36 +02:00
|
|
|
assert False
|
|
|
|
|
|
|
|
|
|
def mark_ready(self):
|
2018-08-29 18:41:51 +02:00
|
|
|
assert self.tip_header
|
|
|
|
|
chain = blockchain.check_header(self.tip_header)
|
|
|
|
|
if not chain:
|
|
|
|
|
self.blockchain = blockchain.blockchains[0]
|
|
|
|
|
else:
|
|
|
|
|
self.blockchain = chain
|
|
|
|
|
|
|
|
|
|
self.print_error("set blockchain with height", self.blockchain.height())
|
|
|
|
|
|
|
|
|
|
if not self.ready.done():
|
|
|
|
|
self.ready.set_result(1)
|
2018-08-16 18:16:25 +02:00
|
|
|
|
|
|
|
|
async def save_certificate(self):
|
|
|
|
|
if not os.path.exists(self.cert_path):
|
|
|
|
|
# we may need to retry this a few times, in case the handshake hasn't completed
|
|
|
|
|
for _ in range(10):
|
|
|
|
|
dercert = await self.get_certificate()
|
|
|
|
|
if dercert:
|
|
|
|
|
self.print_error("succeeded in getting cert")
|
|
|
|
|
with open(self.cert_path, 'w') as f:
|
|
|
|
|
cert = ssl.DER_cert_to_PEM_cert(dercert)
|
|
|
|
|
# workaround android bug
|
|
|
|
|
cert = re.sub("([^\n])-----END CERTIFICATE-----","\\1\n-----END CERTIFICATE-----",cert)
|
|
|
|
|
f.write(cert)
|
|
|
|
|
# even though close flushes we can't fsync when closed.
|
|
|
|
|
# and we must flush before fsyncing, cause flush flushes to OS buffer
|
|
|
|
|
# fsync writes to OS buffer to disk
|
|
|
|
|
f.flush()
|
|
|
|
|
os.fsync(f.fileno())
|
|
|
|
|
break
|
|
|
|
|
await asyncio.sleep(1)
|
2018-08-17 14:51:02 +02:00
|
|
|
else:
|
2018-09-09 01:15:06 +02:00
|
|
|
raise Exception("could not get certificate")
|
2017-01-09 16:36:05 +01:00
|
|
|
|
2018-08-16 18:16:25 +02:00
|
|
|
async def get_certificate(self):
|
|
|
|
|
sslc = ssl.SSLContext()
|
2015-06-03 00:03:33 +09:00
|
|
|
try:
|
2018-08-27 20:39:36 +02:00
|
|
|
async with aiorpcx.ClientSession(self.host, self.port, ssl=sslc, proxy=self.proxy) as session:
|
2018-08-16 18:16:25 +02:00
|
|
|
return session.transport._ssl_protocol._sslpipe._sslobj.getpeercert(True)
|
|
|
|
|
except ValueError:
|
|
|
|
|
return None
|
|
|
|
|
|
2018-09-04 16:57:07 +02:00
|
|
|
async def get_block_header(self, height, assert_mode):
|
2018-09-10 17:12:05 +02:00
|
|
|
res = await self.session.send_request('blockchain.block.header', [height], timeout=5)
|
2018-09-04 16:57:07 +02:00
|
|
|
return blockchain.deserialize_header(bytes.fromhex(res), height)
|
|
|
|
|
|
|
|
|
|
async def request_chunk(self, idx, tip):
|
|
|
|
|
return await self.network.request_chunk(idx, tip, self.session)
|
|
|
|
|
|
2018-08-31 18:06:11 +02:00
|
|
|
async def open_session(self, sslc, exit_early):
|
|
|
|
|
header_queue = asyncio.Queue()
|
2018-09-11 14:57:59 +02:00
|
|
|
self.session = NotificationSession(self.host, self.port, ssl=sslc, proxy=self.proxy)
|
2018-09-06 15:44:11 +02:00
|
|
|
async with self.session as session:
|
2018-09-06 16:45:43 +02:00
|
|
|
try:
|
|
|
|
|
ver = await session.send_request('server.version', [ELECTRUM_VERSION, PROTOCOL_VERSION])
|
|
|
|
|
except aiorpcx.jsonrpc.RPCError as e:
|
|
|
|
|
raise GracefulDisconnect(e) # probably 'unsupported protocol version'
|
2018-08-31 18:06:11 +02:00
|
|
|
if exit_early:
|
|
|
|
|
return
|
|
|
|
|
self.print_error(ver, self.host)
|
2018-09-11 14:57:59 +02:00
|
|
|
await session.subscribe('blockchain.headers.subscribe', [], header_queue)
|
2018-09-07 19:34:28 +02:00
|
|
|
async with self.group as group:
|
2018-09-11 14:57:59 +02:00
|
|
|
await group.spawn(self.ping())
|
|
|
|
|
await group.spawn(self.run_fetch_blocks(header_queue))
|
2018-09-07 20:26:45 +02:00
|
|
|
await group.spawn(self.monitor_connection())
|
2018-09-07 19:34:28 +02:00
|
|
|
# NOTE: group.__aexit__ will be called here; this is needed to notice exceptions in the group!
|
|
|
|
|
|
2018-09-07 20:26:45 +02:00
|
|
|
async def monitor_connection(self):
|
|
|
|
|
while True:
|
|
|
|
|
await asyncio.sleep(1)
|
|
|
|
|
if not self.session or self.session.is_closing():
|
|
|
|
|
raise GracefulDisconnect('server closed session')
|
|
|
|
|
|
2018-09-11 14:57:59 +02:00
|
|
|
async def ping(self):
|
2018-09-07 19:34:28 +02:00
|
|
|
while True:
|
2018-09-11 14:57:59 +02:00
|
|
|
await asyncio.sleep(300)
|
|
|
|
|
await self.session.send_request('server.ping', timeout=10)
|
2012-10-21 02:57:31 +02:00
|
|
|
|
2018-08-16 18:16:25 +02:00
|
|
|
def close(self):
|
|
|
|
|
self.fut.cancel()
|
2018-09-07 19:34:28 +02:00
|
|
|
asyncio.get_event_loop().create_task(self.group.cancel_remaining())
|
2014-07-28 00:13:40 +02:00
|
|
|
|
2018-09-11 14:57:59 +02:00
|
|
|
async def run_fetch_blocks(self, header_queue):
|
2018-08-14 17:50:20 +02:00
|
|
|
while True:
|
|
|
|
|
self.network.notify('updated')
|
2018-09-11 14:57:59 +02:00
|
|
|
item = await header_queue.get()
|
|
|
|
|
item = item[0]
|
|
|
|
|
height = item['height']
|
|
|
|
|
item = blockchain.deserialize_header(bfh(item['hex']), item['height'])
|
|
|
|
|
self.tip_header = item
|
|
|
|
|
self.tip = height
|
|
|
|
|
if self.tip < constants.net.max_checkpoint():
|
|
|
|
|
raise GracefulDisconnect('server tip below max checkpoint')
|
|
|
|
|
if not self.ready.done():
|
|
|
|
|
self.mark_ready()
|
|
|
|
|
async with self.network.bhi_lock:
|
2018-09-04 16:57:07 +02:00
|
|
|
if self.blockchain.height() < item['block_height']-1:
|
|
|
|
|
_, height = await self.sync_until(height, None)
|
|
|
|
|
if self.blockchain.height() >= height and self.blockchain.check_header(item):
|
2018-08-14 17:50:20 +02:00
|
|
|
# another interface amended the blockchain
|
2018-09-11 11:44:49 +02:00
|
|
|
self.print_error("skipping header", height)
|
2018-08-14 17:50:20 +02:00
|
|
|
continue
|
2018-09-04 16:57:07 +02:00
|
|
|
if self.tip < height:
|
|
|
|
|
height = self.tip
|
|
|
|
|
_, height = await self.step(height, item)
|
2018-08-14 17:50:20 +02:00
|
|
|
|
2018-09-04 16:57:07 +02:00
|
|
|
async def sync_until(self, height, next_height=None):
|
2018-08-14 17:50:20 +02:00
|
|
|
if next_height is None:
|
2018-09-04 16:57:07 +02:00
|
|
|
next_height = self.tip
|
2018-08-14 17:50:20 +02:00
|
|
|
last = None
|
2018-09-04 16:57:07 +02:00
|
|
|
while last is None or height < next_height:
|
|
|
|
|
if next_height > height + 10:
|
|
|
|
|
could_connect, num_headers = await self.request_chunk(height, next_height)
|
2018-08-14 17:50:20 +02:00
|
|
|
if not could_connect:
|
2018-09-09 05:00:09 +02:00
|
|
|
if height <= constants.net.max_checkpoint():
|
2018-08-31 16:46:03 +02:00
|
|
|
raise Exception('server chain conflicts with checkpoints or genesis')
|
2018-09-04 16:57:07 +02:00
|
|
|
last, height = await self.step(height)
|
2018-08-14 17:50:20 +02:00
|
|
|
continue
|
2018-09-04 16:57:07 +02:00
|
|
|
height = (height // 2016 * 2016) + num_headers
|
|
|
|
|
if height > next_height:
|
|
|
|
|
assert False, (height, self.tip)
|
2018-08-14 17:50:20 +02:00
|
|
|
last = 'catchup'
|
|
|
|
|
else:
|
2018-09-04 16:57:07 +02:00
|
|
|
last, height = await self.step(height)
|
|
|
|
|
return last, height
|
2018-08-14 17:50:20 +02:00
|
|
|
|
2018-09-04 16:57:07 +02:00
|
|
|
async def step(self, height, header=None):
|
|
|
|
|
assert height != 0
|
2018-08-14 17:50:20 +02:00
|
|
|
if header is None:
|
2018-09-04 16:57:07 +02:00
|
|
|
header = await self.get_block_header(height, 'catchup')
|
|
|
|
|
chain = self.blockchain.check_header(header) if 'mock' not in header else header['mock']['check'](header)
|
|
|
|
|
if chain: return 'catchup', height
|
|
|
|
|
can_connect = blockchain.can_connect(header) if 'mock' not in header else header['mock']['connect'](height)
|
2018-08-14 17:50:20 +02:00
|
|
|
|
|
|
|
|
bad_header = None
|
|
|
|
|
if not can_connect:
|
2018-09-04 16:57:07 +02:00
|
|
|
self.print_error("can't connect", height)
|
2018-08-14 17:50:20 +02:00
|
|
|
#backward
|
2018-09-04 16:57:07 +02:00
|
|
|
bad = height
|
2018-08-14 17:50:20 +02:00
|
|
|
bad_header = header
|
2018-09-04 16:57:07 +02:00
|
|
|
height -= 1
|
2018-08-14 17:50:20 +02:00
|
|
|
checkp = False
|
2018-09-09 05:00:09 +02:00
|
|
|
if height <= constants.net.max_checkpoint():
|
2018-09-11 17:16:37 +02:00
|
|
|
height = constants.net.max_checkpoint()
|
2018-08-14 17:50:20 +02:00
|
|
|
checkp = True
|
|
|
|
|
|
2018-09-04 16:57:07 +02:00
|
|
|
header = await self.get_block_header(height, 'backward')
|
2018-08-14 17:50:20 +02:00
|
|
|
chain = blockchain.check_header(header) if 'mock' not in header else header['mock']['check'](header)
|
2018-09-04 16:57:07 +02:00
|
|
|
can_connect = blockchain.can_connect(header) if 'mock' not in header else header['mock']['connect'](height)
|
2018-09-09 01:15:06 +02:00
|
|
|
if checkp and not (can_connect or chain):
|
|
|
|
|
raise Exception("server chain conflicts with checkpoints. {} {}".format(can_connect, chain))
|
2018-08-14 17:50:20 +02:00
|
|
|
while not chain and not can_connect:
|
2018-09-04 16:57:07 +02:00
|
|
|
bad = height
|
2018-08-14 17:50:20 +02:00
|
|
|
bad_header = header
|
2018-09-04 16:57:07 +02:00
|
|
|
delta = self.tip - height
|
|
|
|
|
next_height = self.tip - 2 * delta
|
2018-08-14 17:50:20 +02:00
|
|
|
checkp = False
|
2018-09-09 05:00:09 +02:00
|
|
|
if next_height <= constants.net.max_checkpoint():
|
2018-09-11 17:16:37 +02:00
|
|
|
next_height = constants.net.max_checkpoint()
|
2018-08-14 17:50:20 +02:00
|
|
|
checkp = True
|
2018-09-04 16:57:07 +02:00
|
|
|
height = next_height
|
2018-08-14 17:50:20 +02:00
|
|
|
|
2018-09-04 16:57:07 +02:00
|
|
|
header = await self.get_block_header(height, 'backward')
|
2018-08-14 17:50:20 +02:00
|
|
|
chain = blockchain.check_header(header) if 'mock' not in header else header['mock']['check'](header)
|
2018-09-04 16:57:07 +02:00
|
|
|
can_connect = blockchain.can_connect(header) if 'mock' not in header else header['mock']['connect'](height)
|
2018-09-09 01:15:06 +02:00
|
|
|
if checkp and not (can_connect or chain):
|
|
|
|
|
raise Exception("server chain conflicts with checkpoints. {} {}".format(can_connect, chain))
|
2018-09-04 16:57:07 +02:00
|
|
|
self.print_error("exiting backward mode at", height)
|
2018-08-14 17:50:20 +02:00
|
|
|
if can_connect:
|
2018-09-04 16:57:07 +02:00
|
|
|
self.print_error("could connect", height)
|
2018-08-14 17:50:20 +02:00
|
|
|
chain = blockchain.check_header(header) if 'mock' not in header else header['mock']['check'](header)
|
|
|
|
|
|
|
|
|
|
if type(can_connect) is bool:
|
|
|
|
|
# mock
|
2018-09-04 16:57:07 +02:00
|
|
|
height += 1
|
|
|
|
|
if height > self.tip:
|
2018-08-14 17:50:20 +02:00
|
|
|
assert False
|
2018-09-04 16:57:07 +02:00
|
|
|
return 'catchup', height
|
|
|
|
|
self.blockchain = can_connect
|
|
|
|
|
height += 1
|
|
|
|
|
self.blockchain.save_header(header)
|
|
|
|
|
return 'catchup', height
|
2018-08-14 17:50:20 +02:00
|
|
|
|
|
|
|
|
if not chain:
|
|
|
|
|
raise Exception("not chain") # line 931 in 8e69174374aee87d73cd2f8005fbbe87c93eee9c's network.py
|
|
|
|
|
|
|
|
|
|
# binary
|
|
|
|
|
if type(chain) in [int, bool]:
|
|
|
|
|
pass # mock
|
|
|
|
|
else:
|
2018-09-04 16:57:07 +02:00
|
|
|
self.blockchain = chain
|
|
|
|
|
good = height
|
|
|
|
|
height = (bad + good) // 2
|
|
|
|
|
header = await self.get_block_header(height, 'binary')
|
2018-08-14 17:50:20 +02:00
|
|
|
while True:
|
|
|
|
|
self.print_error("binary step")
|
|
|
|
|
chain = blockchain.check_header(header) if 'mock' not in header else header['mock']['check'](header)
|
|
|
|
|
if chain:
|
2018-09-04 16:57:07 +02:00
|
|
|
assert bad != height, (bad, height)
|
|
|
|
|
good = height
|
|
|
|
|
self.blockchain = self.blockchain if type(chain) in [bool, int] else chain
|
2018-08-14 17:50:20 +02:00
|
|
|
else:
|
2018-09-04 16:57:07 +02:00
|
|
|
bad = height
|
|
|
|
|
assert good != height
|
2018-08-14 17:50:20 +02:00
|
|
|
bad_header = header
|
|
|
|
|
if bad != good + 1:
|
2018-09-04 16:57:07 +02:00
|
|
|
height = (bad + good) // 2
|
|
|
|
|
header = await self.get_block_header(height, 'binary')
|
2018-08-14 17:50:20 +02:00
|
|
|
continue
|
2018-09-04 16:57:07 +02:00
|
|
|
mock = bad_header and 'mock' in bad_header and bad_header['mock']['connect'](height)
|
|
|
|
|
real = not mock and self.blockchain.can_connect(bad_header, check_height=False)
|
2018-08-14 17:50:20 +02:00
|
|
|
if not real and not mock:
|
|
|
|
|
raise Exception('unexpected bad header during binary' + str(bad_header)) # line 948 in 8e69174374aee87d73cd2f8005fbbe87c93eee9c's network.py
|
|
|
|
|
branch = blockchain.blockchains.get(bad)
|
|
|
|
|
if branch is not None:
|
|
|
|
|
ismocking = False
|
|
|
|
|
if type(branch) is dict:
|
|
|
|
|
ismocking = True
|
|
|
|
|
# FIXME: it does not seem sufficient to check that the branch
|
|
|
|
|
# contains the bad_header. what if self.blockchain doesn't?
|
|
|
|
|
# the chains shouldn't be joined then. observe the incorrect
|
|
|
|
|
# joining on regtest with a server that has a fork of height
|
|
|
|
|
# one. the problem is observed only if forking is not during
|
|
|
|
|
# electrum runtime
|
2018-09-09 01:15:06 +02:00
|
|
|
if not ismocking and branch.check_header(bad_header) \
|
|
|
|
|
or ismocking and branch['check'](bad_header):
|
2018-08-14 17:50:20 +02:00
|
|
|
self.print_error('joining chain', bad)
|
2018-09-04 16:57:07 +02:00
|
|
|
height += 1
|
|
|
|
|
return 'join', height
|
2018-08-14 17:50:20 +02:00
|
|
|
else:
|
2018-09-09 01:15:06 +02:00
|
|
|
if not ismocking and branch.parent().check_header(header) \
|
|
|
|
|
or ismocking and branch['parent']['check'](header):
|
2018-09-04 16:57:07 +02:00
|
|
|
self.print_error('reorg', bad, self.tip)
|
|
|
|
|
self.blockchain = branch.parent() if not ismocking else branch['parent']
|
|
|
|
|
height = bad
|
|
|
|
|
header = await self.get_block_header(height, 'binary')
|
2018-08-14 17:50:20 +02:00
|
|
|
else:
|
|
|
|
|
if ismocking:
|
2018-09-04 16:57:07 +02:00
|
|
|
height = bad + 1
|
2018-08-14 17:50:20 +02:00
|
|
|
self.print_error("TODO replace blockchain")
|
2018-09-04 16:57:07 +02:00
|
|
|
return 'conflict', height
|
2018-08-14 17:50:20 +02:00
|
|
|
self.print_error('forkpoint conflicts with existing fork', branch.path())
|
|
|
|
|
branch.write(b'', 0)
|
|
|
|
|
branch.save_header(bad_header)
|
2018-09-04 16:57:07 +02:00
|
|
|
self.blockchain = branch
|
|
|
|
|
height = bad + 1
|
|
|
|
|
return 'conflict', height
|
2018-08-14 17:50:20 +02:00
|
|
|
else:
|
2018-09-04 16:57:07 +02:00
|
|
|
bh = self.blockchain.height()
|
2018-08-14 17:50:20 +02:00
|
|
|
if bh > good:
|
2018-09-04 16:57:07 +02:00
|
|
|
forkfun = self.blockchain.fork
|
2018-08-14 17:50:20 +02:00
|
|
|
if 'mock' in bad_header:
|
|
|
|
|
chain = bad_header['mock']['check'](bad_header)
|
|
|
|
|
forkfun = bad_header['mock']['fork'] if 'fork' in bad_header['mock'] else forkfun
|
|
|
|
|
else:
|
2018-09-04 16:57:07 +02:00
|
|
|
chain = self.blockchain.check_header(bad_header)
|
2018-08-14 17:50:20 +02:00
|
|
|
if not chain:
|
|
|
|
|
b = forkfun(bad_header)
|
|
|
|
|
assert bad not in blockchain.blockchains, (bad, list(blockchain.blockchains.keys()))
|
|
|
|
|
blockchain.blockchains[bad] = b
|
2018-09-04 16:57:07 +02:00
|
|
|
self.blockchain = b
|
|
|
|
|
height = b.forkpoint + 1
|
2018-08-14 17:50:20 +02:00
|
|
|
assert b.forkpoint == bad
|
2018-09-04 16:57:07 +02:00
|
|
|
return 'fork', height
|
2018-08-14 17:50:20 +02:00
|
|
|
else:
|
|
|
|
|
assert bh == good
|
2018-09-04 16:57:07 +02:00
|
|
|
if bh < self.tip:
|
2018-08-14 17:50:20 +02:00
|
|
|
self.print_error("catching up from %d"% (bh + 1))
|
2018-09-04 16:57:07 +02:00
|
|
|
height = bh + 1
|
|
|
|
|
return 'no_fork', height
|
2018-08-14 17:50:20 +02:00
|
|
|
|
2018-09-10 19:47:36 +02:00
|
|
|
|
2014-06-27 11:36:51 +02:00
|
|
|
def check_cert(host, cert):
|
|
|
|
|
try:
|
2015-08-07 11:58:59 +02:00
|
|
|
b = pem.dePem(cert, 'CERTIFICATE')
|
|
|
|
|
x = x509.X509(b)
|
2014-06-27 11:36:51 +02:00
|
|
|
except:
|
|
|
|
|
traceback.print_exc(file=sys.stdout)
|
|
|
|
|
return
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
x.check_date()
|
|
|
|
|
expired = False
|
|
|
|
|
except:
|
|
|
|
|
expired = True
|
|
|
|
|
|
|
|
|
|
m = "host: %s\n"%host
|
|
|
|
|
m += "has_expired: %s\n"% expired
|
2015-03-12 21:39:05 +01:00
|
|
|
util.print_msg(m)
|
2014-06-27 11:36:51 +02:00
|
|
|
|
|
|
|
|
|
2015-06-03 00:03:33 +09:00
|
|
|
# Used by tests
|
|
|
|
|
def _match_hostname(name, val):
|
|
|
|
|
if val == name:
|
|
|
|
|
return True
|
|
|
|
|
|
|
|
|
|
return val.startswith('*.') and name.endswith(val[1:])
|
|
|
|
|
|
2017-01-30 12:36:56 +03:00
|
|
|
|
2014-06-27 11:36:51 +02:00
|
|
|
def test_certificates():
|
2017-01-22 21:25:24 +03:00
|
|
|
from .simple_config import SimpleConfig
|
2014-06-27 11:36:51 +02:00
|
|
|
config = SimpleConfig()
|
|
|
|
|
mydir = os.path.join(config.path, "certs")
|
|
|
|
|
certs = os.listdir(mydir)
|
|
|
|
|
for c in certs:
|
|
|
|
|
p = os.path.join(mydir,c)
|
2018-03-23 21:47:51 +01:00
|
|
|
with open(p, encoding='utf-8') as f:
|
2014-06-27 11:36:51 +02:00
|
|
|
cert = f.read()
|
|
|
|
|
check_cert(c, cert)
|
|
|
|
|
|
|
|
|
|
if __name__ == "__main__":
|
|
|
|
|
test_certificates()
|
