netmaker/mq/util.go

package mq

import (
	"fmt"

	"github.com/gravitl/netmaker/logic"
	"github.com/gravitl/netmaker/models"
	"github.com/gravitl/netmaker/netclient/ncutils"
)

func decryptMsg(node *models.Node, msg []byte) ([]byte, error) {
	if len(msg) <= 24 { // make sure message is of appropriate length
		return nil, fmt.Errorf("recieved invalid message from broker %s", string(msg))
	}

	trafficKey, trafficErr := logic.RetrievePrivateTrafficKey() // get server private key
	if trafficErr != nil {
		return nil, trafficErr
	}
	serverPrivTKey, err := ncutils.ConvertBytesToKey(trafficKey)
	if err != nil {
		return nil, err
	}
	nodePubTKey, err := ncutils.ConvertBytesToKey(node.TrafficKeys.Mine)
	if err != nil {
		return nil, err
	}

	return ncutils.BoxDecrypt(msg, nodePubTKey, serverPrivTKey)
}

func encryptMsg(node *models.Node, msg []byte) ([]byte, error) {
	// fetch server public key to be certain hasn't changed in transit
	trafficKey, trafficErr := logic.RetrievePrivateTrafficKey()
	if trafficErr != nil {
		return nil, trafficErr
	}

	serverPrivKey, err := ncutils.ConvertBytesToKey(trafficKey)
	if err != nil {
		return nil, err
	}

	nodePubKey, err := ncutils.ConvertBytesToKey(node.TrafficKeys.Mine)
	if err != nil {
		return nil, err
	}

	return ncutils.BoxEncrypt(msg, nodePubKey, serverPrivKey)
}

func publish(node *models.Node, dest string, msg []byte) error {
	client := SetupMQTT(true)
	defer client.Disconnect(250)
	encrypted, encryptErr := encryptMsg(node, msg)
	if encryptErr != nil {
		return encryptErr
	}
	if token := client.Publish(dest, 0, true, encrypted); token.Wait() && token.Error() != nil {
		return token.Error()
	}
	return nil
}
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`package mq`

			`import (`
edited so that if certain error detected, restart daemon, log changes 2022-02-07 04:02:05 +08:00			`"fmt"`

added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`"github.com/gravitl/netmaker/logic"`
remove db read 2022-01-29 22:14:18 +08:00			`"github.com/gravitl/netmaker/models"`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`"github.com/gravitl/netmaker/netclient/ncutils"`
			`)`

switched to eliptical strategy 2022-01-30 04:02:37 +08:00			`func decryptMsg(node *models.Node, msg []byte) ([]byte, error) {`
edited so that if certain error detected, restart daemon, log changes 2022-02-07 04:02:05 +08:00			`if len(msg) <= 24 { // make sure message is of appropriate length`
			`return nil, fmt.Errorf("recieved invalid message from broker %s", string(msg))`
			`}`

switched to eliptical strategy 2022-01-30 04:02:37 +08:00			`trafficKey, trafficErr := logic.RetrievePrivateTrafficKey() // get server private key`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`if trafficErr != nil {`
			`return nil, trafficErr`
			`}`
switched to eliptical strategy 2022-01-30 04:02:37 +08:00			`serverPrivTKey, err := ncutils.ConvertBytesToKey(trafficKey)`
			`if err != nil {`
			`return nil, err`
			`}`
			`nodePubTKey, err := ncutils.ConvertBytesToKey(node.TrafficKeys.Mine)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return ncutils.BoxDecrypt(msg, nodePubTKey, serverPrivTKey)`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`}`

switched to eliptical strategy 2022-01-30 04:02:37 +08:00			`func encryptMsg(node *models.Node, msg []byte) ([]byte, error) {`
			`// fetch server public key to be certain hasn't changed in transit`
			`trafficKey, trafficErr := logic.RetrievePrivateTrafficKey()`
			`if trafficErr != nil {`
			`return nil, trafficErr`
			`}`

			`serverPrivKey, err := ncutils.ConvertBytesToKey(trafficKey)`
			`if err != nil {`
			`return nil, err`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`}`
switched to eliptical strategy 2022-01-30 04:02:37 +08:00
			`nodePubKey, err := ncutils.ConvertBytesToKey(node.TrafficKeys.Mine)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return ncutils.BoxEncrypt(msg, nodePubKey, serverPrivKey)`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`}`

remove db read 2022-01-29 22:14:18 +08:00			`func publish(node *models.Node, dest string, msg []byte) error {`
cleaned up daemon and server mq 2022-02-09 08:13:58 +08:00			`client := SetupMQTT(true)`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`defer client.Disconnect(250)`
switched to eliptical strategy 2022-01-30 04:02:37 +08:00			`encrypted, encryptErr := encryptMsg(node, msg)`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`if encryptErr != nil {`
			`return encryptErr`
			`}`
set retained true on server publish and client ping server on checkin 2022-02-05 07:00:17 +08:00			`if token := client.Publish(dest, 0, true, encrypted); token.Wait() && token.Error() != nil {`
added encryption/decryption strategy 2022-01-29 04:33:30 +08:00			`return token.Error()`
			`}`
			`return nil`
			`}`