You can not select more than 25 topics
			Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
		
		
		
		
		
			
		
			
				
					
					
						
							149 lines
						
					
					
						
							4.5 KiB
						
					
					
				
			
		
		
	
	
							149 lines
						
					
					
						
							4.5 KiB
						
					
					
				| #include <QDateTime>
 | |
| #include <QDebug>
 | |
| #include <QFile>
 | |
| #include <QJsonDocument>
 | |
| #include <QJsonObject>
 | |
| #include <QNetworkReply>
 | |
| #include <QNetworkRequest>
 | |
| #include <QString>
 | |
| #include <QWidget>
 | |
| #include <QTimer>
 | |
| #include <QRandomGenerator>
 | |
| 
 | |
| #include "api.hpp"
 | |
| #include "home.hpp"
 | |
| #include "common/params.h"
 | |
| #include "common/util.h"
 | |
| 
 | |
| #include <QSslSocket>
 | |
| 
 | |
| #if defined(QCOM) || defined(QCOM2)
 | |
| const std::string private_key_path = "/persist/comma/id_rsa";
 | |
| #else
 | |
| const std::string private_key_path = util::getenv_default("HOME", "/.comma/persist/comma/id_rsa", "/persist/comma/id_rsa");
 | |
| #endif
 | |
| 
 | |
| QByteArray CommaApi::rsa_sign(QByteArray data) {
 | |
|   auto file = QFile(private_key_path.c_str());
 | |
|   if (!file.open(QIODevice::ReadOnly)) {
 | |
|     qDebug() << "No RSA private key found, please run manager.py or registration.py";
 | |
|     return QByteArray();
 | |
|   }
 | |
|   auto key = file.readAll();
 | |
|   file.close();
 | |
|   file.deleteLater();
 | |
|   BIO* mem = BIO_new_mem_buf(key.data(), key.size());
 | |
|   assert(mem);
 | |
|   RSA* rsa_private = PEM_read_bio_RSAPrivateKey(mem, NULL, NULL, NULL);
 | |
|   assert(rsa_private);
 | |
|   auto sig = QByteArray();
 | |
|   sig.resize(RSA_size(rsa_private));
 | |
|   unsigned int sig_len;
 | |
|   int ret = RSA_sign(NID_sha256, (unsigned char*)data.data(), data.size(), (unsigned char*)sig.data(), &sig_len, rsa_private);
 | |
|   assert(ret == 1);
 | |
|   assert(sig_len == sig.size());
 | |
|   BIO_free(mem);
 | |
|   RSA_free(rsa_private);
 | |
|   return sig;
 | |
| }
 | |
| 
 | |
| QString CommaApi::create_jwt(QVector<QPair<QString, QJsonValue>> payloads, int expiry) {
 | |
|   QString dongle_id = QString::fromStdString(Params().get("DongleId"));
 | |
| 
 | |
|   QJsonObject header;
 | |
|   header.insert("alg", "RS256");
 | |
| 
 | |
|   QJsonObject payload;
 | |
|   payload.insert("identity", dongle_id);
 | |
| 
 | |
|   auto t = QDateTime::currentSecsSinceEpoch();
 | |
|   payload.insert("nbf", t);
 | |
|   payload.insert("iat", t);
 | |
|   payload.insert("exp", t + expiry);
 | |
|   for (auto load : payloads) {
 | |
|     payload.insert(load.first, load.second);
 | |
|   }
 | |
| 
 | |
|   auto b64_opts = QByteArray::Base64UrlEncoding | QByteArray::OmitTrailingEquals;
 | |
|   QString jwt = QJsonDocument(header).toJson(QJsonDocument::Compact).toBase64(b64_opts) + '.' +
 | |
|                 QJsonDocument(payload).toJson(QJsonDocument::Compact).toBase64(b64_opts);
 | |
| 
 | |
|   auto hash = QCryptographicHash::hash(jwt.toUtf8(), QCryptographicHash::Sha256);
 | |
|   auto sig = rsa_sign(hash);
 | |
|   jwt += '.' + sig.toBase64(b64_opts);
 | |
|   return jwt;
 | |
| }
 | |
| 
 | |
| QString CommaApi::create_jwt() {
 | |
|   return create_jwt(*(new QVector<QPair<QString, QJsonValue>>()));
 | |
| }
 | |
| 
 | |
| RequestRepeater::RequestRepeater(QWidget* parent, QString requestURL, int period_seconds, QVector<QPair<QString, QJsonValue>> payloads, bool disableWithScreen)
 | |
|   : disableWithScreen(disableWithScreen), QObject(parent)  {
 | |
|   networkAccessManager = new QNetworkAccessManager(this);
 | |
| 
 | |
|   reply = NULL;
 | |
| 
 | |
|   QTimer* timer = new QTimer(this);
 | |
|   QObject::connect(timer, &QTimer::timeout, [=](){sendRequest(requestURL, payloads);});
 | |
|   timer->start(period_seconds * 1000);
 | |
| 
 | |
|   networkTimer = new QTimer(this);
 | |
|   networkTimer->setSingleShot(true);
 | |
|   networkTimer->setInterval(20000);
 | |
|   connect(networkTimer, SIGNAL(timeout()), this, SLOT(requestTimeout()));
 | |
| }
 | |
| 
 | |
| void RequestRepeater::sendRequest(QString requestURL, QVector<QPair<QString, QJsonValue>> payloads){
 | |
|   // No network calls onroad
 | |
|   if(GLWindow::ui_state.scene.started){
 | |
|     return;
 | |
|   }
 | |
|   if (!active || (!GLWindow::ui_state.awake && disableWithScreen)) {
 | |
|     return;
 | |
|   }
 | |
|   if(reply != NULL){
 | |
|     return;
 | |
|   }
 | |
| 
 | |
|   aborted = false;
 | |
|   QString token = CommaApi::create_jwt(payloads);
 | |
|   QNetworkRequest request;
 | |
|   request.setUrl(QUrl(requestURL));
 | |
|   request.setRawHeader(QByteArray("Authorization"), ("JWT " + token).toUtf8());
 | |
| 
 | |
| #ifdef QCOM
 | |
|   QSslConfiguration ssl = QSslConfiguration::defaultConfiguration();
 | |
|   ssl.setCaCertificates(QSslCertificate::fromPath("/usr/etc/tls/cert.pem",
 | |
|                         QSsl::Pem, QRegExp::Wildcard));
 | |
|   request.setSslConfiguration(ssl);
 | |
| #endif
 | |
| 
 | |
|   reply = networkAccessManager->get(request);
 | |
| 
 | |
|   networkTimer->start();
 | |
|   connect(reply, SIGNAL(finished()), this, SLOT(requestFinished()));
 | |
| }
 | |
| 
 | |
| void RequestRepeater::requestTimeout(){
 | |
|   aborted = true;
 | |
|   reply->abort();
 | |
| }
 | |
| 
 | |
| // This function should always emit something
 | |
| void RequestRepeater::requestFinished(){
 | |
|   if (!aborted) {
 | |
|     networkTimer->stop();
 | |
|     QString response = reply->readAll();
 | |
|     if (reply->error() == QNetworkReply::NoError) {
 | |
|       emit receivedResponse(response);
 | |
|     } else {
 | |
|       qDebug() << reply->errorString();
 | |
|       emit failedResponse(reply->errorString());
 | |
|     }
 | |
|   } else {
 | |
|     emit failedResponse("network timeout");
 | |
|   }
 | |
|   reply->deleteLater();
 | |
|   reply = NULL;
 | |
| }
 | |
| 
 |