}
async fn handle(
-
_all_clients: Arc<AllClients>,
+ all_clients: Arc<AllClients>,
req: hyper::Request<hyper::Body>
) -> Result<hyper::Response<hyper::Body>, Void> {
if req.method() == Method::GET {
let mut meta = MetadataFieldIterator::new(comp.payload_start);
let client: ClientName = meta.need_parse().context("client addr")?;
- let token: &str = meta.need_next().context("token")?;
-
-// let client = all_clients.get(&client).ok_or_else(|| anyhow!(BAD_CLIENT))?;
+ let (client_time, hmac_got) = (||{
+ let token: &str = meta.need_next().context(r#"find in "m""#)?;
+ let (time_t, hmac_got) = token.split_once(' ')
+ .ok_or_else(|| anyhow!("split"))?;
+ let time_t: u64 = time_t.parse().context("parse time_t")?;
+ Ok::<_,AE>((time_t, hmac_got))
+ })().context("token")?;
+
+ let client = all_clients.get(&client);
+
+ // We attempt to hide whether the client exists we don't try to
+ // hide the hash lookup computationgs, but we do try to hide the
+ // HMAC computation by always doing it. We hope that the compiler
+ // doesn't produce a specialised implementation for the dummy
+ // secret value.
+ let client_exists = subtle::Choice::from(client.is_some() as u8);
+ let secret = client.map(|c| c.ic.secret.0.as_bytes());
+ let secret = secret.unwrap_or(&[0x55; HMAC_B][..]);
+ let client_time_s = format!("{:x}", client_time);
+ let hmac_exp = token_hmac(secret, client_time_s.as_bytes());
+ // We also definitely want a consttime memeq for the hmac value
+ let hmac_ok = hmac_got.as_bytes().ct_eq(&hmac_exp);
+ if ! bool::from(hmac_ok & client_exists) {
+ throw!(anyhow!("xxx should be a 403 error"));
+ }
+
+ let client = client.unwrap();
+ let now = time_t_now();
+ let chk_skew = |a: u64, b: u64, c_ahead_behind| {
+ if let Some(a_ahead) = a.checked_sub(b) {
+ if a_ahead > client.ic.max_clock_skew.as_secs() {
+ throw!(anyhow!("too much clock skew (client {} by {})",
+ c_ahead_behind, a_ahead));
+ }
+ }
+ Ok::<_,AE>(())
+ };
+ chk_skew(client_time, now, "ahead")?;
+ chk_skew(now, client_time, "behind")?;
+
eprintln!("boundary={:?} start={} name={:?} client={}",
- boundary, start, &comp.name, client);
+ boundary, start, &comp.name, &client.ic);
Ok::<_,AE>(())
}.await {
async fn run_client(_ic: Arc<InstanceConfig>, _web: mpsc::Receiver<WebRequest>)
-> Result<Void, AE>
{
+ tokio::time::sleep(Duration::from_secs(1_000_000_000)).await;
Err(anyhow!("xxx"))
}
accum.into()
}
+pub fn time_t_now() -> u64 {
+ SystemTime::now()
+ .duration_since(UNIX_EPOCH)
+ .unwrap_or_else(|_| Duration::default()) // clock is being weird
+ .as_secs()
+}
+
use sha2::Digest as _;
-type HmacH = sha2::Sha256;
-const HMAC_B: usize = 64;
-const HMAC_L: usize = 32;
+pub type HmacH = sha2::Sha256;
+pub const HMAC_B: usize = 64;
+pub const HMAC_L: usize = 32;
pub fn token_hmac(key: &[u8], message: &[u8]) -> [u8; HMAC_L] {
let key = {
~ian / hippotat.git / commitdiff