openethereum/parity/signer.rs

// Copyright 2015, 2016 Ethcore (UK) Ltd.
// This file is part of Parity.

// Parity is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.

// Parity is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.

// You should have received a copy of the GNU General Public License
// along with Parity.  If not, see <http://www.gnu.org/licenses/>.

use std::io;
use std::sync::Arc;
use std::path::PathBuf;
use ansi_term::Colour;
use util::panics::{ForwardPanic, PanicHandler};
use util::path::restrict_permissions_owner;
use rpc_apis;
use ethcore_signer as signer;
use die::*;

pub use ethcore_signer::Server as SignerServer;

const CODES_FILENAME: &'static str = "authcodes";

pub struct Configuration {
	pub enabled: bool,
	pub port: u16,
	pub signer_path: String,
}

pub struct Dependencies {
	pub panic_handler: Arc<PanicHandler>,
	pub apis: Arc<rpc_apis::Dependencies>,
}

pub fn start(conf: Configuration, deps: Dependencies) -> Option<SignerServer> {
	if !conf.enabled {
		None
	} else {
		Some(do_start(conf, deps))
	}
}

fn codes_path(path: String) -> PathBuf {
	let mut p = PathBuf::from(path);
	p.push(CODES_FILENAME);
	let _ = restrict_permissions_owner(&p);
	p
}

pub fn new_token(path: String) -> io::Result<String> {
	let path = codes_path(path);
	let mut codes = try!(signer::AuthCodes::from_file(&path));
	let code = try!(codes.generate_new());
	try!(codes.to_file(&path));
	trace!("New key code created: {}", Colour::White.bold().paint(&code[..]));
	Ok(code)
}

fn do_start(conf: Configuration, deps: Dependencies) -> SignerServer {
	let addr = format!("127.0.0.1:{}", conf.port).parse().unwrap_or_else(|_| {
		die!("Invalid port specified: {}", conf.port)
	});

	let start_result = {
		let server = signer::ServerBuilder::new(
			deps.apis.signer_queue.clone(),
			codes_path(conf.signer_path),
		);
		let server = rpc_apis::setup_rpc(server, deps.apis, rpc_apis::ApiSet::SafeContext);
		server.start(addr)
	};

	match start_result {
		Err(signer::ServerError::IoError(err)) => die_with_io_error("Trusted Signer", err),
		Err(e) => die!("Trusted Signer: {:?}", e),
		Ok(server) => {
			deps.panic_handler.forward_from(&server);
			server
		},
	}
}
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`// Copyright 2015, 2016 Ethcore (UK) Ltd.`
			`// This file is part of Parity.`

			`// Parity is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`

			`// Parity is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU General Public License for more details.`

			`// You should have received a copy of the GNU General Public License`
			`// along with Parity. If not, see <http://www.gnu.org/licenses/>.`

SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`use std::io;`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`use std::sync::Arc;`
cleaned up parity/signer (#1551) * cleanup parity/signer * remove redundant import of signer crate from main.rs * rpc and signer are no longer optional * move importing extern crates to main.rs file 2016-07-11 17:11:49 +02:00			`use std::path::PathBuf;`
			`use ansi_term::Colour;`
			`use util::panics::{ForwardPanic, PanicHandler};`
Security audit issues fixed (#1279) * Restrict network key file permissions * Check for overflow in str to bigint conversion * RLP decoder overflow check 2016-06-15 00:58:08 +02:00			`use util::path::restrict_permissions_owner;`
Simple signing queue, confirmation APIs exposed in signer WebSockets. (#1182) * Splitting methods requiring signing into separate trait * Single place where RPC apis are created. * Separating eth_filter * Separating eth_signing * Stubs for Personal Signer methods * Test for EthSigningQueueClient * TransactionConfirmation API * Exposing PersonalSigner API * Defining ApiSets dependent on context * Removing types * Fixing default impl * Fixing un-mocked tests * Update signing_queue.rs [ci skip] * Removing unused import [ci skip] 2016-06-01 19:37:34 +02:00			`use rpc_apis;`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`use ethcore_signer as signer;`
cleaned up parity/signer (#1551) * cleanup parity/signer * remove redundant import of signer crate from main.rs * rpc and signer are no longer optional * move importing extern crates to main.rs file 2016-07-11 17:11:49 +02:00			`use die::*;`

WebSockets server for signer 2016-05-27 13:03:00 +02:00			`pub use ethcore_signer::Server as SignerServer;`
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00
cleaned up parity/signer (#1551) * cleanup parity/signer * remove redundant import of signer crate from main.rs * rpc and signer are no longer optional * move importing extern crates to main.rs file 2016-07-11 17:11:49 +02:00			`const CODES_FILENAME: &'static str = "authcodes";`
WebSockets server for signer 2016-05-27 13:03:00 +02:00
			`pub struct Configuration {`
			`pub enabled: bool,`
			`pub port: u16,`
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`pub signer_path: String,`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`}`

			`pub struct Dependencies {`
			`pub panic_handler: Arc<PanicHandler>,`
Simple signing queue, confirmation APIs exposed in signer WebSockets. (#1182) * Splitting methods requiring signing into separate trait * Single place where RPC apis are created. * Separating eth_filter * Separating eth_signing * Stubs for Personal Signer methods * Test for EthSigningQueueClient * TransactionConfirmation API * Exposing PersonalSigner API * Defining ApiSets dependent on context * Removing types * Fixing default impl * Fixing un-mocked tests * Update signing_queue.rs [ci skip] * Removing unused import [ci skip] 2016-06-01 19:37:34 +02:00			`pub apis: Arc<rpc_apis::Dependencies>,`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`}`

			`pub fn start(conf: Configuration, deps: Dependencies) -> Option<SignerServer> {`
			`if !conf.enabled {`
Exposing RPC over websockets 2016-05-27 17:46:15 +02:00			`None`
			`} else {`
			`Some(do_start(conf, deps))`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`}`
Exposing RPC over websockets 2016-05-27 17:46:15 +02:00			`}`
WebSockets server for signer 2016-05-27 13:03:00 +02:00
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`fn codes_path(path: String) -> PathBuf {`
			`let mut p = PathBuf::from(path);`
			`p.push(CODES_FILENAME);`
			`let _ = restrict_permissions_owner(&p);`
			`p`
			`}`

Multi-mode logging. (#1643) * Multi-mode logging. Better for miners (they get immediate notification of new block). Better for general use (less superfluous information shown). * Remove comment. [ci:skip] * Minor string change [ci:skip] * Minor message tweak. * Minor tweaks and indentation fix. 2016-07-17 23:00:57 +02:00			`pub fn new_token(path: String) -> io::Result<String> {`
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`let path = codes_path(path);`
			`let mut codes = try!(signer::AuthCodes::from_file(&path));`
			`let code = try!(codes.generate_new());`
			`try!(codes.to_file(&path));`
Multi-mode logging. (#1643) * Multi-mode logging. Better for miners (they get immediate notification of new block). Better for general use (less superfluous information shown). * Remove comment. [ci:skip] * Minor string change [ci:skip] * Minor message tweak. * Minor tweaks and indentation fix. 2016-07-17 23:00:57 +02:00			`trace!("New key code created: {}", Colour::White.bold().paint(&code[..]));`
			`Ok(code)`
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`}`

Exposing RPC over websockets 2016-05-27 17:46:15 +02:00			`fn do_start(conf: Configuration, deps: Dependencies) -> SignerServer {`
			`let addr = format!("127.0.0.1:{}", conf.port).parse().unwrap_or_else(\|_\| {`
			`die!("Invalid port specified: {}", conf.port)`
			`});`

			`let start_result = {`
SystemUIs authorization (#1233) * Initial implementation of AuthCodeStore for SystemUIs * SystemUIs authorization * Renaming SystemUI -> SignerUI * Fixing clippy warnings * Lowering time threshold * Bumping sysui * Fixing test 2016-06-07 17:21:19 +02:00			`let server = signer::ServerBuilder::new(`
			`deps.apis.signer_queue.clone(),`
			`codes_path(conf.signer_path),`
			`);`
Simple signing queue, confirmation APIs exposed in signer WebSockets. (#1182) * Splitting methods requiring signing into separate trait * Single place where RPC apis are created. * Separating eth_filter * Separating eth_signing * Stubs for Personal Signer methods * Test for EthSigningQueueClient * TransactionConfirmation API * Exposing PersonalSigner API * Defining ApiSets dependent on context * Removing types * Fixing default impl * Fixing un-mocked tests * Update signing_queue.rs [ci skip] * Removing unused import [ci skip] 2016-06-01 19:37:34 +02:00			`let server = rpc_apis::setup_rpc(server, deps.apis, rpc_apis::ApiSet::SafeContext);`
Exposing RPC over websockets 2016-05-27 17:46:15 +02:00			`server.start(addr)`
			`};`
WebSockets server for signer 2016-05-27 13:03:00 +02:00
			`match start_result {`
			`Err(signer::ServerError::IoError(err)) => die_with_io_error("Trusted Signer", err),`
			`Err(e) => die!("Trusted Signer: {:?}", e),`
			`Ok(server) => {`
			`deps.panic_handler.forward_from(&server);`
Exposing RPC over websockets 2016-05-27 17:46:15 +02:00			`server`
WebSockets server for signer 2016-05-27 13:03:00 +02:00			`},`
			`}`
			`}`