vervis/src/Vervis/ActorKey.hs

{- This file is part of Vervis.
 -
 - Written in 2019 by fr33domlover <fr33domlover@riseup.net>.
 -
 - ♡ Copying is an act of love. Please copy, reuse and share.
 -
 - The author(s) have dedicated all copyright and related and neighboring
 - rights to this software to the public domain worldwide. This software is
 - distributed without any warranty.
 -
 - You should have received a copy of the CC0 Public Domain Dedication along
 - with this software. If not, see
 - <http://creativecommons.org/publicdomain/zero/1.0/>.
 -}

module Vervis.ActorKey
    ( ActorKey ()
    , generateActorKey
    , actorKeyRotator
    , actorKeyPublicBin
    )
where

import Prelude

import Control.Concurrent (threadDelay)
import Control.Concurrent.STM (TVar, writeTVar)
import Control.Monad (forever)
import Control.Monad.STM (atomically)
import Crypto.PubKey.Ed25519
import Data.ByteArray (convert)
import Data.ByteString (ByteString)
import Data.Time.Interval (TimeInterval, microseconds)
import Data.PEM

-- | Ed25519 signing key, we generate it on the server and use for signing. We
-- also make its public key available to whoever wishes to verify our
-- signatures.
data ActorKey = ActorKey
    { actorKeySecret :: SecretKey
      -- ^ Secret key in binary form.
    , actorKeyPublic :: PublicKey
      -- ^ Public key in binary form.
    -- , actorKeyPubPEM :: ByteString
      -- ^ Public key in PEM format. This can be generated from the binary
      --   form, but we keep it here because it's used for sending the public
      --   key to whoever wishes to verify our signatures. So, we generate a
      --   key once and potentially send the PEM many times.
    }

{-
-- | Ed25519 public key for signature verification. We receive these public
-- keys from other servers and we use them to verify HTTP request signatures.
data ActorPublicKey = ActorPublicKey
    { actorPublicKeyBin   :: PublicKey
      -- ^ Public key in binary form. This is used for signature verification.
    , actorPublicKeyPem   :: ByteString
      -- ^ Public key in PEM format. We can use it for formatting the key as
      --   JSON, and generally into textual formats.
    , actorPublicKeyId    :: URI
      -- ^ Public key ID URI. We can use it for formatting the key as JSON or
      --   other textual formats, and for verifying that it's identical to the
      --   URI we used for retrieving the key.
    , actorPublicKeyActor :: URI
      -- ^ Public key's actor URI. We can use it for formatting the key as JSON
      --   or other textual formats, and for verifying that it's identical to
      --   the actor ID through which we found the key. We can also check that
      --   this ID matches the actor ID to which content is attributed, to make
      --   sure we don't accept content claimed to be authored by someone other
      --   than the actor who signed the request.
    }

instance FromJSON ActorPublicKey where
    parseJSON = withObject "ActorPublicKey" $ \ o -> do
        pem <- o .: "publicKeyPem"
        ActorPublicKey
            <$> parsePEM pem
            <*> pure pem
            <*> parseURI' =<< (o .: "id" <|> o .: "@id")
            <*> parseURI' =<< o .: "owner"
    where
    parsePEM b =
        case pemParseBS b of
            Left e -> fail $ "PEM parsing failed: " ++ e
            Right xs ->
                case xs of
                    [] -> fail "Empty PEM"
                    [x] ->
                        case publickey $ pemContent x of
                            CryptoPassed k -> return k
                            CryptoFailed e -> fail $ show e
                    _ -> fail "Multiple PEM sections"
    parseURI' t =
        withText "URI" $ \ t ->
            case parseURI $ T.unpack t of
                Nothing -> fail "Invalid absolute URI"
                Just u ->
                    if uriScheme u == "https:"
                        then return u
                        else fail "URI scheme isn't https"

instance ToJSON ActorPublicKey where
    toJSON = error "toJSON ActorPublicKey"
    toEncoding (ActorPublicKey _ pem keyid actor) =
        pairs
            $  "id"           .= showURI keyid
            <> "owner"        .= showURI actor
            <> "publicKeyPem" .= pem
        where
        showURI u = uriToString id u ""
        {-
        array = Array . V.fromList
        context =
            array
                [ String "https://w3id.org/security/v1"
                , object [("id", String "@id")]
                ]
        -}
-}

-- | Generate a new random key.
generateActorKey :: IO ActorKey
generateActorKey = mk <$> generateSecretKey
    where
    mk secret =
        let public = toPublic secret
        in  ActorKey
                { actorKeySecret = secret
                , actorKeyPublic = public
                -- , actorKeyPubPEM = renderPEM public
                }
    -- renderPEM :: PublicKey -> ByteString
    -- renderPEM = pemWriteBS . PEM "PUBLIC KEY" [] . convert

-- | A loop that runs forever and periodically generates a new actor key,
-- storing it in a 'TVar'.
actorKeyRotator :: TimeInterval -> TVar ActorKey -> IO ()
actorKeyRotator interval key =
    let micros = microseconds interval
    in  if 0 < micros && micros <= toInteger (maxBound :: Int)
            then
                let micros' = fromInteger micros
                in  forever $ do
                        threadDelay micros'
                        generateActorKey >>= atomically . writeTVar key
            else
                error $
                    "actorKeyRotator: interval out of range: " ++ show micros

-- | The public key in PEM format, can be directly placed in responses.
--
-- Well, right now it's actually just the public key in binary form, because
-- the type of publicKeyPem is PEM, so, I need to figure out etc. to see if
-- there's a nice way to reuse the PEM that is worth it. Even if not, that's
-- probably okay because the PEM rendering is hopefully trivial.
actorKeyPublicBin :: ActorKey -> ByteString
actorKeyPublicBin = convert . actorKeyPublic
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`{- This file is part of Vervis.`
			`-`
			`- Written in 2019 by fr33domlover <fr33domlover@riseup.net>.`
			`-`
			`- ♡ Copying is an act of love. Please copy, reuse and share.`
			`-`
			`- The author(s) have dedicated all copyright and related and neighboring`
			`- rights to this software to the public domain worldwide. This software is`
			`- distributed without any warranty.`
			`-`
			`- You should have received a copy of the CC0 Public Domain Dedication along`
			`- with this software. If not, see`
			`- <http://creativecommons.org/publicdomain/zero/1.0/>.`
			`-}`

			`module Vervis.ActorKey`
			`( ActorKey ()`
			`, generateActorKey`
			`, actorKeyRotator`
Public ActivityPub actor in PersonR It already had one, but it didn't have a public key and it was using the old mess of the Vervis.ActivityStreams module, which I'll possibly remove soon. It's hopefully more elegant now. 2019-01-19 14:56:58 +09:00			`, actorKeyPublicBin`
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`)`
			`where`

			`import Prelude`

			`import Control.Concurrent (threadDelay)`
			`import Control.Concurrent.STM (TVar, writeTVar)`
			`import Control.Monad (forever)`
			`import Control.Monad.STM (atomically)`
			`import Crypto.PubKey.Ed25519`
			`import Data.ByteArray (convert)`
			`import Data.ByteString (ByteString)`
			`import Data.Time.Interval (TimeInterval, microseconds)`
			`import Data.PEM`

ActivityPub inbox test page This patch includes some ugliness and commented out code. Sorry for that. I'll clean it up soon. Basically there's a TVar holding a Vector of at most 10 AP activities. You can freely POST stuff to /inbox, and then GET /inbox and see what you posted, or an error description saying why your activity was rejected. 2019-01-19 10:44:21 +09:00			`-- \| Ed25519 signing key, we generate it on the server and use for signing. We`
			`-- also make its public key available to whoever wishes to verify our`
			`-- signatures.`
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`data ActorKey = ActorKey`
ActivityPub inbox test page This patch includes some ugliness and commented out code. Sorry for that. I'll clean it up soon. Basically there's a TVar holding a Vector of at most 10 AP activities. You can freely POST stuff to /inbox, and then GET /inbox and see what you posted, or an error description saying why your activity was rejected. 2019-01-19 10:44:21 +09:00			`{ actorKeySecret :: SecretKey`
			`-- ^ Secret key in binary form.`
			`, actorKeyPublic :: PublicKey`
			`-- ^ Public key in binary form.`
Public ActivityPub actor in PersonR It already had one, but it didn't have a public key and it was using the old mess of the Vervis.ActivityStreams module, which I'll possibly remove soon. It's hopefully more elegant now. 2019-01-19 14:56:58 +09:00			`-- , actorKeyPubPEM :: ByteString`
ActivityPub inbox test page This patch includes some ugliness and commented out code. Sorry for that. I'll clean it up soon. Basically there's a TVar holding a Vector of at most 10 AP activities. You can freely POST stuff to /inbox, and then GET /inbox and see what you posted, or an error description saying why your activity was rejected. 2019-01-19 10:44:21 +09:00			`-- ^ Public key in PEM format. This can be generated from the binary`
			`-- form, but we keep it here because it's used for sending the public`
			`-- key to whoever wishes to verify our signatures. So, we generate a`
			`-- key once and potentially send the PEM many times.`
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`}`

ActivityPub inbox test page This patch includes some ugliness and commented out code. Sorry for that. I'll clean it up soon. Basically there's a TVar holding a Vector of at most 10 AP activities. You can freely POST stuff to /inbox, and then GET /inbox and see what you posted, or an error description saying why your activity was rejected. 2019-01-19 10:44:21 +09:00			`{-`
			`-- \| Ed25519 public key for signature verification. We receive these public`
			`-- keys from other servers and we use them to verify HTTP request signatures.`
			`data ActorPublicKey = ActorPublicKey`
			`{ actorPublicKeyBin :: PublicKey`
			`-- ^ Public key in binary form. This is used for signature verification.`
			`, actorPublicKeyPem :: ByteString`
			`-- ^ Public key in PEM format. We can use it for formatting the key as`
			`-- JSON, and generally into textual formats.`
			`, actorPublicKeyId :: URI`
			`-- ^ Public key ID URI. We can use it for formatting the key as JSON or`
			`-- other textual formats, and for verifying that it's identical to the`
			`-- URI we used for retrieving the key.`
			`, actorPublicKeyActor :: URI`
			`-- ^ Public key's actor URI. We can use it for formatting the key as JSON`
			`-- or other textual formats, and for verifying that it's identical to`
			`-- the actor ID through which we found the key. We can also check that`
			`-- this ID matches the actor ID to which content is attributed, to make`
			`-- sure we don't accept content claimed to be authored by someone other`
			`-- than the actor who signed the request.`
			`}`

			`instance FromJSON ActorPublicKey where`
			`parseJSON = withObject "ActorPublicKey" $ \ o -> do`
			`pem <- o .: "publicKeyPem"`
			`ActorPublicKey`
			`<$> parsePEM pem`
			`<*> pure pem`
			`<*> parseURI' =<< (o .: "id" <\|> o .: "@id")`
			`<*> parseURI' =<< o .: "owner"`
			`where`
			`parsePEM b =`
			`case pemParseBS b of`
			`Left e -> fail $ "PEM parsing failed: " ++ e`
			`Right xs ->`
			`case xs of`
			`[] -> fail "Empty PEM"`
			`[x] ->`
			`case publickey $ pemContent x of`
			`CryptoPassed k -> return k`
			`CryptoFailed e -> fail $ show e`
			`_ -> fail "Multiple PEM sections"`
			`parseURI' t =`
			`withText "URI" $ \ t ->`
			`case parseURI $ T.unpack t of`
			`Nothing -> fail "Invalid absolute URI"`
			`Just u ->`
			`if uriScheme u == "https:"`
			`then return u`
			`else fail "URI scheme isn't https"`

			`instance ToJSON ActorPublicKey where`
			`toJSON = error "toJSON ActorPublicKey"`
			`toEncoding (ActorPublicKey _ pem keyid actor) =`
			`pairs`
			`$ "id" .= showURI keyid`
			`<> "owner" .= showURI actor`
			`<> "publicKeyPem" .= pem`
			`where`
			`showURI u = uriToString id u ""`
			`{-`
			`array = Array . V.fromList`
			`context =`
			`array`
			`[ String "https://w3id.org/security/v1"`
			`, object [("id", String "@id")]`
			`]`
			`-}`
			`-}`

Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`-- \| Generate a new random key.`
			`generateActorKey :: IO ActorKey`
			`generateActorKey = mk <$> generateSecretKey`
			`where`
			`mk secret =`
			`let public = toPublic secret`
			`in ActorKey`
ActivityPub inbox test page This patch includes some ugliness and commented out code. Sorry for that. I'll clean it up soon. Basically there's a TVar holding a Vector of at most 10 AP activities. You can freely POST stuff to /inbox, and then GET /inbox and see what you posted, or an error description saying why your activity was rejected. 2019-01-19 10:44:21 +09:00			`{ actorKeySecret = secret`
			`, actorKeyPublic = public`
Public ActivityPub actor in PersonR It already had one, but it didn't have a public key and it was using the old mess of the Vervis.ActivityStreams module, which I'll possibly remove soon. It's hopefully more elegant now. 2019-01-19 14:56:58 +09:00			`-- , actorKeyPubPEM = renderPEM public`
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00			`}`
Public ActivityPub actor in PersonR It already had one, but it didn't have a public key and it was using the old mess of the Vervis.ActivityStreams module, which I'll possibly remove soon. It's hopefully more elegant now. 2019-01-19 14:56:58 +09:00			`-- renderPEM :: PublicKey -> ByteString`
			`-- renderPEM = pemWriteBS . PEM "PUBLIC KEY" [] . convert`
Periodically rotated AP actor key for signing ActivityPub requests The actor key will be used for all actors on the server. It's held in a `TVar` so that it can always be safely updated and safely retrieved (technically there is a single writer so IORef and MVar could work, but they require extra care while TVar is by design suited for this sort of thing). 2019-01-15 07:08:44 +09:00
			`-- \| A loop that runs forever and periodically generates a new actor key,`
			`-- storing it in a 'TVar'.`
			`actorKeyRotator :: TimeInterval -> TVar ActorKey -> IO ()`
			`actorKeyRotator interval key =`
			`let micros = microseconds interval`
			`in if 0 < micros && micros <= toInteger (maxBound :: Int)`
			`then`
			`let micros' = fromInteger micros`
			`in forever $ do`
			`threadDelay micros'`
			`generateActorKey >>= atomically . writeTVar key`
			`else`
			`error $`
			`"actorKeyRotator: interval out of range: " ++ show micros`

			`-- \| The public key in PEM format, can be directly placed in responses.`
Public ActivityPub actor in PersonR It already had one, but it didn't have a public key and it was using the old mess of the Vervis.ActivityStreams module, which I'll possibly remove soon. It's hopefully more elegant now. 2019-01-19 14:56:58 +09:00			`--`
			`-- Well, right now it's actually just the public key in binary form, because`
			`-- the type of publicKeyPem is PEM, so, I need to figure out etc. to see if`
			`-- there's a nice way to reuse the PEM that is worth it. Even if not, that's`
			`-- probably okay because the PEM rendering is hopefully trivial.`
			`actorKeyPublicBin :: ActorKey -> ByteString`
			`actorKeyPublicBin = convert . actorKeyPublic`