Keep Peer Caching + Resource Verification.

2026-02-09 13:28:00 +01:00
parent 1c0b2b4312
commit fa914958b6
14 changed files with 221 additions and 133 deletions
--- a/daemons/node/stream/handler.go
+++ b/daemons/node/stream/handler.go
@@ -2,6 +2,7 @@ package stream

 import (
 	"context"
+	"crypto/subtle"
 	"encoding/json"
 	"errors"
 	"oc-discovery/daemons/node/common"
@@ -13,24 +14,60 @@ import (
 	"cloud.o-forge.io/core/oc-lib/tools"
 )

-func (ps *StreamService) getTopicName(topicName string) tools.PubSubAction {
+type Verify struct {
+	IsVerified bool `json:"is_verified"`
+}
+
+func (ps *StreamService) getTopicName(topicName string) string {
 	ns := strings.Split(topicName, ".")
 	if len(ns) > 0 {
-		return tools.GetActionString(ns[0])
+		return ns[0]
 	}
-	return tools.NONE
+	return tools.NONE.String()
 }

 func (ps *StreamService) handleEvent(topicName string, evt *common.Event) error {
 	action := ps.getTopicName(topicName)
-	if err := ps.handleEventFromPartner(evt, action); err != nil {
-		return err
+	ps.handleEventFromPartner(evt, action)
+	if action == "verify_resource" {
+		if evt.DataType == -1 {
+			tools.NewNATSCaller().SetNATSPub(tools.VERIFY_RESOURCE, tools.NATSResponse{
+				FromApp: "oc-discovery",
+				Method:  int(tools.VERIFY_RESOURCE),
+				Payload: evt.Payload,
+			})
+		} else if err := ps.verifyResponse(evt); err != nil {
+			return err
+		}
 	}
-	if action == tools.PB_SEARCH_RESPONSE {
+	if action == tools.PB_SEARCH_RESPONSE.String() {
 		if err := ps.retrieveResponse(evt); err != nil {
 			return err
 		}
 	}
+	return errors.New("no action authorized available : " + action)
+}
+
+func (abs *StreamService) verifyResponse(event *common.Event) error { //
+	res, err := resources.ToResource(int(event.DataType), event.Payload)
+	if err != nil || res == nil {
+		return nil
+	}
+	verify := Verify{
+		IsVerified: false,
+	}
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(event.DataType), nil)
+	data := access.LoadOne(res.GetID())
+	if data.Err == "" && data.Data != nil {
+		if b, err := json.Marshal(data.Data); err == nil {
+			if res2, err := resources.ToResource(int(event.DataType), b); err == nil {
+				verify.IsVerified = subtle.ConstantTimeCompare(res.GetSignature(), res2.GetSignature()) == 1
+			}
+		}
+	}
+	if b, err := json.Marshal(verify); err == nil {
+		abs.PublishVerifyResources(nil, "", event.From, b)
+	}
 	return nil
 }

@@ -49,10 +86,7 @@ func (abs *StreamService) retrieveResponse(event *common.Event) error { //
 	return nil
 }

-func (ps *StreamService) handleEventFromPartner(evt *common.Event, action tools.PubSubAction) error {
-	if !(action == tools.PB_CREATE || action == tools.PB_UPDATE || action == tools.PB_DELETE) {
-		return nil
-	}
+func (ps *StreamService) handleEventFromPartner(evt *common.Event, action string) error {
 	resource, err := resources.ToResource(int(evt.DataType), evt.Payload)
 	if err != nil {
 		return err
@@ -62,7 +96,7 @@ func (ps *StreamService) handleEventFromPartner(evt *common.Event, action tools.
 		return err
 	}
 	switch action {
-	case tools.PB_SEARCH:
+	case tools.PB_SEARCH.String():
 		access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
 		peers := access.Search(nil, evt.From, false)
 		if len(peers.Data) > 0 {
@@ -72,15 +106,15 @@ func (ps *StreamService) handleEventFromPartner(evt *common.Event, action tools.
 		} else if p, err := ps.Node.GetPeerRecord(context.Background(), evt.From); err == nil && len(p) > 0 { // peer from is peerID
 			ps.SendResponse(p[0], evt)
 		}
-	case tools.PB_CREATE:
-	case tools.PB_UPDATE:
+	case tools.PB_CREATE.String():
+	case tools.PB_UPDATE.String():
 		go tools.NewNATSCaller().SetNATSPub(tools.CREATE_RESOURCE, tools.NATSResponse{
 			FromApp:  "oc-discovery",
 			Datatype: tools.DataType(evt.DataType),
 			Method:   int(tools.CREATE_RESOURCE),
 			Payload:  b,
 		})
-	case tools.PB_DELETE:
+	case tools.PB_DELETE.String():
 		go tools.NewNATSCaller().SetNATSPub(tools.REMOVE_RESOURCE, tools.NATSResponse{
 			FromApp:  "oc-discovery",
 			Datatype: tools.DataType(evt.DataType),
@@ -88,7 +122,7 @@ func (ps *StreamService) handleEventFromPartner(evt *common.Event, action tools.
 			Payload:  b,
 		})
 	default:
-		return errors.New("no action authorized available : " + action.String())
+		return errors.New("no action authorized available : " + action)
 	}
 	return nil
 }
--- a/daemons/node/stream/publish.go
+++ b/daemons/node/stream/publish.go
@@ -17,6 +17,20 @@ import (
 	"github.com/libp2p/go-libp2p/core/protocol"
 )

+func (ps *StreamService) PublishVerifyResources(dt *tools.DataType, user string, toPeerID string, resource []byte) (*common.Stream, error) {
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+	p := access.LoadOne(toPeerID)
+	if p.Err != "" {
+		return nil, errors.New(p.Err)
+	} else {
+		ad, err := pp.AddrInfoFromString(p.Data.(*peer.Peer).StreamAddress)
+		if err != nil {
+			return nil, err
+		}
+		return ps.write("verify_resource", toPeerID, ad, dt, user, resource, ProtocolVerifyResource, p.Data.(*peer.Peer).Relation == peer.PARTNER)
+	}
+}
+
 func (ps *StreamService) PublishResources(dt *tools.DataType, user string, toPeerID string, resource []byte) error {
 	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
 	p := access.LoadOne(toPeerID)
@@ -27,7 +41,7 @@ func (ps *StreamService) PublishResources(dt *tools.DataType, user string, toPee
 		if err != nil {
 			return err
 		}
-		ps.write(tools.PB_SEARCH, toPeerID, ad, dt, user, resource, ProtocolSearchResource, p.Data.(*peer.Peer).Relation == peer.PARTNER)
+		ps.write(tools.PB_SEARCH.String(), toPeerID, ad, dt, user, resource, ProtocolSearchResource, p.Data.(*peer.Peer).Relation == peer.PARTNER)
 	}
 	return nil
 }
@@ -55,7 +69,7 @@ func (ps *StreamService) SearchKnownPublishEvent(dt *tools.DataType, user string
 			if err != nil {
 				continue
 			}
-			ps.write(tools.PB_SEARCH, p.GetID(), ad, dt, user, b, ProtocolSearchResource, p.(*peer.Peer).Relation == peer.PARTNER)
+			ps.write(tools.PB_SEARCH.String(), p.GetID(), ad, dt, user, b, ProtocolSearchResource, p.(*peer.Peer).Relation == peer.PARTNER)
 		}
 	}
 	return nil
@@ -74,7 +88,7 @@ func (ps *StreamService) SearchPartnersPublishEvent(dt *tools.DataType, user str
 			if err != nil {
 				continue
 			}
-			ps.write(tools.PB_SEARCH, p.GetID(), ad, dt, user, b, ProtocolSearchResource, true)
+			ps.write(tools.PB_SEARCH.String(), p.GetID(), ad, dt, user, b, ProtocolSearchResource, true)
 		}
 	}
 	return nil
@@ -116,7 +130,7 @@ func (ps *StreamService) ToPartnerPublishEvent(
 				if err != nil {
 					continue
 				}
-				ps.write(action, p.GetID(), ad, dt, user, payload, protocol, true)
+				ps.write(action.String(), p.GetID(), ad, dt, user, payload, protocol, true)
 			}
 		}
 	}
@@ -124,19 +138,19 @@ func (ps *StreamService) ToPartnerPublishEvent(
 }

 func (s *StreamService) write(
-	action tools.PubSubAction,
+	action string,
 	did string,
 	peerID *pp.AddrInfo,
 	dt *tools.DataType,
 	user string,
 	payload []byte,
 	proto protocol.ID,
-	isAPartner bool) error {
+	isAPartner bool) (*common.Stream, error) {
 	logger := oclib.GetLogger()

-	name := action.String() + "#" + peerID.ID.String()
+	name := action + "#" + peerID.ID.String()
 	if dt != nil {
-		name = action.String() + "." + (*dt).String() + "#" + peerID.ID.String()
+		name = action + "." + (*dt).String() + "#" + peerID.ID.String()
 	}
 	s.Mu.Lock()
 	defer s.Mu.Unlock()
@@ -169,10 +183,9 @@ func (s *StreamService) write(
 						}
 					}
 				}
-
 			}
 		}
-		return errors.New("no stream available for protocol " + fmt.Sprintf("%v", proto) + " from PID " + peerID.ID.String())
+		return nil, errors.New("no stream available for protocol " + fmt.Sprintf("%v", proto) + " from PID " + peerID.ID.String())
 	}
 	stream := s.Streams[proto][peerID.ID]

@@ -182,7 +195,7 @@ func (s *StreamService) write(
 	if err := enc.Encode(evt); err != nil {
 		stream.Stream.Close()
 		logger.Err(err)
-		return nil
+		return stream, nil
 	}
-	return nil
+	return stream, nil
 }
--- a/daemons/node/stream/service.go
+++ b/daemons/node/stream/service.go
@@ -26,6 +26,8 @@ const ProtocolCreateResource = "/opencloud/resource/create/1.0"
 const ProtocolUpdateResource = "/opencloud/resource/update/1.0"
 const ProtocolDeleteResource = "/opencloud/resource/delete/1.0"

+const ProtocolVerifyResource = "/opencloud/resource/verify/1.0"
+
 const ProtocolHeartbeatPartner = "/opencloud/resource/heartbeat/partner/1.0"

 var protocols = []protocol.ID{
@@ -33,6 +35,7 @@ var protocols = []protocol.ID{
 	ProtocolCreateResource,
 	ProtocolUpdateResource,
 	ProtocolDeleteResource,
+	ProtocolVerifyResource,
 }

 type StreamService struct {