Compare commits
4 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
cfacedbb1a | ||
|
|
c3bab033ed | ||
|
|
524f9bd84f | ||
|
|
4658ede9d6 |
32
07.md
32
07.md
@@ -1,32 +0,0 @@
|
|||||||
NIP-07
|
|
||||||
======
|
|
||||||
|
|
||||||
`window.nostr` capability for web browsers
|
|
||||||
------------------------------------------
|
|
||||||
|
|
||||||
`draft` `optional`
|
|
||||||
|
|
||||||
The `window.nostr` object may be made available by web browsers or extensions and websites or web-apps may make use of it after checking its availability.
|
|
||||||
|
|
||||||
That object must define the following methods:
|
|
||||||
|
|
||||||
```
|
|
||||||
async window.nostr.getPublicKey(): string // returns a public key as hex
|
|
||||||
async window.nostr.signEvent(event: { created_at: number, kind: number, tags: string[][], content: string }): Event // takes an event object, adds `id`, `pubkey` and `sig` and returns it
|
|
||||||
```
|
|
||||||
|
|
||||||
Aside from these two basic above, the following functions can also be implemented optionally:
|
|
||||||
```
|
|
||||||
async window.nostr.nip04.encrypt(pubkey, plaintext): string // returns ciphertext and iv as specified in nip-04 (deprecated)
|
|
||||||
async window.nostr.nip04.decrypt(pubkey, ciphertext): string // takes ciphertext and iv as specified in nip-04 (deprecated)
|
|
||||||
async window.nostr.nip44.encrypt(pubkey, plaintext): string // returns ciphertext as specified in nip-44
|
|
||||||
async window.nostr.nip44.decrypt(pubkey, ciphertext): string // takes ciphertext as specified in nip-44
|
|
||||||
```
|
|
||||||
|
|
||||||
### Recommendation to Extension Authors
|
|
||||||
To make sure that the `window.nostr` is available to nostr clients on page load, the authors who create Chromium and Firefox extensions should load their scripts by specifying `"run_at": "document_end"` in the extension's manifest.
|
|
||||||
|
|
||||||
|
|
||||||
### Implementation
|
|
||||||
|
|
||||||
See https://github.com/aljazceru/awesome-nostr#nip-07-browser-extensions.
|
|
||||||
118
Makefile
118
Makefile
@@ -36,10 +36,10 @@ $(NOSTR_CORE_LIB):
|
|||||||
@echo "Building nostr_core_lib..."
|
@echo "Building nostr_core_lib..."
|
||||||
cd nostr_core_lib && ./build.sh
|
cd nostr_core_lib && ./build.sh
|
||||||
|
|
||||||
# Generate version.h from git tags
|
# Generate main.h from git tags
|
||||||
src/version.h:
|
src/main.h:
|
||||||
@if [ -d .git ]; then \
|
@if [ -d .git ]; then \
|
||||||
echo "Generating version.h from git tags..."; \
|
echo "Generating main.h from git tags..."; \
|
||||||
RAW_VERSION=$$(git describe --tags --always 2>/dev/null || echo "unknown"); \
|
RAW_VERSION=$$(git describe --tags --always 2>/dev/null || echo "unknown"); \
|
||||||
if echo "$$RAW_VERSION" | grep -q "^v[0-9]"; then \
|
if echo "$$RAW_VERSION" | grep -q "^v[0-9]"; then \
|
||||||
CLEAN_VERSION=$$(echo "$$RAW_VERSION" | sed 's/^v//' | cut -d- -f1); \
|
CLEAN_VERSION=$$(echo "$$RAW_VERSION" | sed 's/^v//' | cut -d- -f1); \
|
||||||
@@ -51,54 +51,98 @@ src/version.h:
|
|||||||
VERSION="v0.0.0"; \
|
VERSION="v0.0.0"; \
|
||||||
MAJOR=0; MINOR=0; PATCH=0; \
|
MAJOR=0; MINOR=0; PATCH=0; \
|
||||||
fi; \
|
fi; \
|
||||||
echo "/* Auto-generated version information */" > src/version.h; \
|
echo "/*" > src/main.h; \
|
||||||
echo "#ifndef VERSION_H" >> src/version.h; \
|
echo " * C-Relay Main Header - Version and Metadata Information" >> src/main.h; \
|
||||||
echo "#define VERSION_H" >> src/version.h; \
|
echo " *" >> src/main.h; \
|
||||||
echo "" >> src/version.h; \
|
echo " * This header contains version information and relay metadata that is" >> src/main.h; \
|
||||||
echo "#define VERSION \"$$VERSION\"" >> src/version.h; \
|
echo " * automatically updated by the build system (build_and_push.sh)." >> src/main.h; \
|
||||||
echo "#define VERSION_MAJOR $$MAJOR" >> src/version.h; \
|
echo " *" >> src/main.h; \
|
||||||
echo "#define VERSION_MINOR $$MINOR" >> src/version.h; \
|
echo " * The build_and_push.sh script updates VERSION and related macros when" >> src/main.h; \
|
||||||
echo "#define VERSION_PATCH $$PATCH" >> src/version.h; \
|
echo " * creating new releases." >> src/main.h; \
|
||||||
echo "" >> src/version.h; \
|
echo " */" >> src/main.h; \
|
||||||
echo "#endif /* VERSION_H */" >> src/version.h; \
|
echo "" >> src/main.h; \
|
||||||
echo "Generated version.h with clean version: $$VERSION"; \
|
echo "#ifndef MAIN_H" >> src/main.h; \
|
||||||
elif [ ! -f src/version.h ]; then \
|
echo "#define MAIN_H" >> src/main.h; \
|
||||||
echo "Git not available and version.h missing, creating fallback version.h..."; \
|
echo "" >> src/main.h; \
|
||||||
|
echo "// Version information (auto-updated by build_and_push.sh)" >> src/main.h; \
|
||||||
|
echo "#define VERSION \"$$VERSION\"" >> src/main.h; \
|
||||||
|
echo "#define VERSION_MAJOR $$MAJOR" >> src/main.h; \
|
||||||
|
echo "#define VERSION_MINOR $$MINOR" >> src/main.h; \
|
||||||
|
echo "#define VERSION_PATCH $$PATCH" >> src/main.h; \
|
||||||
|
echo "" >> src/main.h; \
|
||||||
|
echo "// Relay metadata (authoritative source for NIP-11 information)" >> src/main.h; \
|
||||||
|
echo "#define RELAY_NAME \"C-Relay\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_DESCRIPTION \"High-performance C Nostr relay with SQLite storage\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_CONTACT \"\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_SOFTWARE \"https://git.laantungir.net/laantungir/c-relay.git\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_VERSION VERSION // Use the same version as the build" >> src/main.h; \
|
||||||
|
echo "#define SUPPORTED_NIPS \"1,2,4,9,11,12,13,15,16,20,22,33,40,42\"" >> src/main.h; \
|
||||||
|
echo "#define LANGUAGE_TAGS \"\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_COUNTRIES \"\"" >> src/main.h; \
|
||||||
|
echo "#define POSTING_POLICY \"\"" >> src/main.h; \
|
||||||
|
echo "#define PAYMENTS_URL \"\"" >> src/main.h; \
|
||||||
|
echo "" >> src/main.h; \
|
||||||
|
echo "#endif /* MAIN_H */" >> src/main.h; \
|
||||||
|
echo "Generated main.h with clean version: $$VERSION"; \
|
||||||
|
elif [ ! -f src/main.h ]; then \
|
||||||
|
echo "Git not available and main.h missing, creating fallback main.h..."; \
|
||||||
VERSION="v0.0.0"; \
|
VERSION="v0.0.0"; \
|
||||||
echo "/* Auto-generated version information */" > src/version.h; \
|
echo "/*" > src/main.h; \
|
||||||
echo "#ifndef VERSION_H" >> src/version.h; \
|
echo " * C-Relay Main Header - Version and Metadata Information" >> src/main.h; \
|
||||||
echo "#define VERSION_H" >> src/version.h; \
|
echo " *" >> src/main.h; \
|
||||||
echo "" >> src/version.h; \
|
echo " * This header contains version information and relay metadata that is" >> src/main.h; \
|
||||||
echo "#define VERSION \"$$VERSION\"" >> src/version.h; \
|
echo " * automatically updated by the build system (build_and_push.sh)." >> src/main.h; \
|
||||||
echo "#define VERSION_MAJOR 0" >> src/version.h; \
|
echo " *" >> src/main.h; \
|
||||||
echo "#define VERSION_MINOR 0" >> src/version.h; \
|
echo " * The build_and_push.sh script updates VERSION and related macros when" >> src/main.h; \
|
||||||
echo "#define VERSION_PATCH 0" >> src/version.h; \
|
echo " * creating new releases." >> src/main.h; \
|
||||||
echo "" >> src/version.h; \
|
echo " */" >> src/main.h; \
|
||||||
echo "#endif /* VERSION_H */" >> src/version.h; \
|
echo "" >> src/main.h; \
|
||||||
echo "Created fallback version.h with version: $$VERSION"; \
|
echo "#ifndef MAIN_H" >> src/main.h; \
|
||||||
|
echo "#define MAIN_H" >> src/main.h; \
|
||||||
|
echo "" >> src/main.h; \
|
||||||
|
echo "// Version information (auto-updated by build_and_push.sh)" >> src/main.h; \
|
||||||
|
echo "#define VERSION \"$$VERSION\"" >> src/main.h; \
|
||||||
|
echo "#define VERSION_MAJOR 0" >> src/main.h; \
|
||||||
|
echo "#define VERSION_MINOR 0" >> src/main.h; \
|
||||||
|
echo "#define VERSION_PATCH 0" >> src/main.h; \
|
||||||
|
echo "" >> src/main.h; \
|
||||||
|
echo "// Relay metadata (authoritative source for NIP-11 information)" >> src/main.h; \
|
||||||
|
echo "#define RELAY_NAME \"C-Relay\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_DESCRIPTION \"High-performance C Nostr relay with SQLite storage\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_CONTACT \"\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_SOFTWARE \"https://git.laantungir.net/laantungir/c-relay.git\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_VERSION VERSION // Use the same version as the build" >> src/main.h; \
|
||||||
|
echo "#define SUPPORTED_NIPS \"1,2,4,9,11,12,13,15,16,20,22,33,40,42\"" >> src/main.h; \
|
||||||
|
echo "#define LANGUAGE_TAGS \"\"" >> src/main.h; \
|
||||||
|
echo "#define RELAY_COUNTRIES \"\"" >> src/main.h; \
|
||||||
|
echo "#define POSTING_POLICY \"\"" >> src/main.h; \
|
||||||
|
echo "#define PAYMENTS_URL \"\"" >> src/main.h; \
|
||||||
|
echo "" >> src/main.h; \
|
||||||
|
echo "#endif /* MAIN_H */" >> src/main.h; \
|
||||||
|
echo "Created fallback main.h with version: $$VERSION"; \
|
||||||
else \
|
else \
|
||||||
echo "Git not available, preserving existing version.h"; \
|
echo "Git not available, preserving existing main.h"; \
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Force version.h regeneration (useful for development)
|
# Force main.h regeneration (useful for development)
|
||||||
force-version:
|
force-version:
|
||||||
@echo "Force regenerating version.h..."
|
@echo "Force regenerating main.h..."
|
||||||
@rm -f src/version.h
|
@rm -f src/main.h
|
||||||
@$(MAKE) src/version.h
|
@$(MAKE) src/main.h
|
||||||
|
|
||||||
# Build the relay
|
# Build the relay
|
||||||
$(TARGET): $(BUILD_DIR) src/version.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
$(TARGET): $(BUILD_DIR) src/main.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
||||||
@echo "Compiling C-Relay for architecture: $(ARCH)"
|
@echo "Compiling C-Relay for architecture: $(ARCH)"
|
||||||
$(CC) $(CFLAGS) $(INCLUDES) $(MAIN_SRC) -o $(TARGET) $(NOSTR_CORE_LIB) $(LIBS)
|
$(CC) $(CFLAGS) $(INCLUDES) $(MAIN_SRC) -o $(TARGET) $(NOSTR_CORE_LIB) $(LIBS)
|
||||||
@echo "Build complete: $(TARGET)"
|
@echo "Build complete: $(TARGET)"
|
||||||
|
|
||||||
# Build for specific architectures
|
# Build for specific architectures
|
||||||
x86: $(BUILD_DIR) src/version.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
x86: $(BUILD_DIR) src/main.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
||||||
@echo "Building C-Relay for x86_64..."
|
@echo "Building C-Relay for x86_64..."
|
||||||
$(CC) $(CFLAGS) $(INCLUDES) $(MAIN_SRC) -o $(BUILD_DIR)/c_relay_x86 $(NOSTR_CORE_LIB) $(LIBS)
|
$(CC) $(CFLAGS) $(INCLUDES) $(MAIN_SRC) -o $(BUILD_DIR)/c_relay_x86 $(NOSTR_CORE_LIB) $(LIBS)
|
||||||
@echo "Build complete: $(BUILD_DIR)/c_relay_x86"
|
@echo "Build complete: $(BUILD_DIR)/c_relay_x86"
|
||||||
|
|
||||||
arm64: $(BUILD_DIR) src/version.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
arm64: $(BUILD_DIR) src/main.h src/sql_schema.h $(MAIN_SRC) $(NOSTR_CORE_LIB)
|
||||||
@echo "Cross-compiling C-Relay for ARM64..."
|
@echo "Cross-compiling C-Relay for ARM64..."
|
||||||
@if ! command -v aarch64-linux-gnu-gcc >/dev/null 2>&1; then \
|
@if ! command -v aarch64-linux-gnu-gcc >/dev/null 2>&1; then \
|
||||||
echo "ERROR: ARM64 cross-compiler not found."; \
|
echo "ERROR: ARM64 cross-compiler not found."; \
|
||||||
@@ -171,7 +215,7 @@ init-db:
|
|||||||
# Clean build artifacts
|
# Clean build artifacts
|
||||||
clean:
|
clean:
|
||||||
rm -rf $(BUILD_DIR)
|
rm -rf $(BUILD_DIR)
|
||||||
rm -f src/version.h
|
rm -f src/main.h
|
||||||
@echo "Clean complete"
|
@echo "Clean complete"
|
||||||
|
|
||||||
# Clean everything including nostr_core_lib
|
# Clean everything including nostr_core_lib
|
||||||
@@ -210,6 +254,6 @@ help:
|
|||||||
@echo " make check-toolchain # Check what compilers are available"
|
@echo " make check-toolchain # Check what compilers are available"
|
||||||
@echo " make test # Run tests"
|
@echo " make test # Run tests"
|
||||||
@echo " make init-db # Set up database"
|
@echo " make init-db # Set up database"
|
||||||
@echo " make force-version # Force regenerate version.h from git"
|
@echo " make force-version # Force regenerate main.h from git"
|
||||||
|
|
||||||
.PHONY: all x86 arm64 test init-db clean clean-all install-deps install-cross-tools install-arm64-deps check-toolchain help force-version
|
.PHONY: all x86 arm64 test init-db clean clean-all install-deps install-cross-tools install-arm64-deps check-toolchain help force-version
|
||||||
@@ -91,8 +91,16 @@ All commands are sent as NIP-44 encrypted JSON arrays in the event content. The
|
|||||||
### Available Configuration Keys
|
### Available Configuration Keys
|
||||||
|
|
||||||
**Basic Relay Settings:**
|
**Basic Relay Settings:**
|
||||||
|
- `relay_name`: Relay name (displayed in NIP-11)
|
||||||
- `relay_description`: Relay description text
|
- `relay_description`: Relay description text
|
||||||
- `relay_contact`: Contact information
|
- `relay_contact`: Contact information
|
||||||
|
- `relay_software`: Software URL
|
||||||
|
- `relay_version`: Software version
|
||||||
|
- `supported_nips`: Comma-separated list of supported NIP numbers (e.g., "1,2,4,9,11,12,13,15,16,20,22,33,40,42")
|
||||||
|
- `language_tags`: Comma-separated list of supported language tags (e.g., "en,es,fr" or "*" for all)
|
||||||
|
- `relay_countries`: Comma-separated list of supported country codes (e.g., "US,CA,MX" or "*" for all)
|
||||||
|
- `posting_policy`: Posting policy URL or text
|
||||||
|
- `payments_url`: Payment URL for premium features
|
||||||
- `max_connections`: Maximum concurrent connections
|
- `max_connections`: Maximum concurrent connections
|
||||||
- `max_subscriptions_per_client`: Max subscriptions per client
|
- `max_subscriptions_per_client`: Max subscriptions per client
|
||||||
- `max_event_tags`: Maximum tags per event
|
- `max_event_tags`: Maximum tags per event
|
||||||
|
|||||||
@@ -932,7 +932,7 @@
|
|||||||
description: 'C-Relay instance - pubkey provided manually',
|
description: 'C-Relay instance - pubkey provided manually',
|
||||||
pubkey: manualPubkey,
|
pubkey: manualPubkey,
|
||||||
contact: 'admin@manual.config.relay',
|
contact: 'admin@manual.config.relay',
|
||||||
supported_nips: [1, 2, 4, 9, 11, 12, 15, 16, 20, 22],
|
supported_nips: [1, 9, 11, 13, 15, 20, 33, 40, 42],
|
||||||
software: 'https://github.com/0xtrr/c-relay',
|
software: 'https://github.com/0xtrr/c-relay',
|
||||||
version: '1.0.0'
|
version: '1.0.0'
|
||||||
};
|
};
|
||||||
@@ -958,7 +958,7 @@
|
|||||||
description: 'C-Relay instance - pubkey provided manually',
|
description: 'C-Relay instance - pubkey provided manually',
|
||||||
pubkey: manualPubkey,
|
pubkey: manualPubkey,
|
||||||
contact: 'admin@manual.config.relay',
|
contact: 'admin@manual.config.relay',
|
||||||
supported_nips: [1, 2, 4, 9, 11, 12, 15, 16, 20, 22],
|
supported_nips: [1, 9, 11, 13, 15, 20, 33, 40, 42],
|
||||||
software: 'https://github.com/0xtrr/c-relay',
|
software: 'https://github.com/0xtrr/c-relay',
|
||||||
version: '1.0.0'
|
version: '1.0.0'
|
||||||
};
|
};
|
||||||
@@ -1286,18 +1286,6 @@
|
|||||||
console.log('Logout event handled successfully');
|
console.log('Logout event handled successfully');
|
||||||
}
|
}
|
||||||
|
|
||||||
// Disconnect from relay and clean up connections
|
|
||||||
function disconnectFromRelay() {
|
|
||||||
if (relayPool) {
|
|
||||||
console.log('Cleaning up relay pool connection...');
|
|
||||||
const url = relayConnectionUrl.value.trim();
|
|
||||||
if (url) {
|
|
||||||
relayPool.close([url]);
|
|
||||||
}
|
|
||||||
relayPool = null;
|
|
||||||
subscriptionId = null;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
// Update visibility of admin sections based on login and relay connection status
|
// Update visibility of admin sections based on login and relay connection status
|
||||||
function updateAdminSectionsVisibility() {
|
function updateAdminSectionsVisibility() {
|
||||||
@@ -2030,56 +2018,33 @@
|
|||||||
|
|
||||||
configForm.innerHTML = '';
|
configForm.innerHTML = '';
|
||||||
|
|
||||||
// Define field types and validation for different config parameters
|
// Define field types and validation for different config parameters (aligned with README.md)
|
||||||
const fieldTypes = {
|
const fieldTypes = {
|
||||||
'auth_enabled': 'boolean',
|
'auth_enabled': 'boolean',
|
||||||
'nip42_auth_required_events': 'boolean',
|
'nip42_auth_required': 'boolean',
|
||||||
'nip42_auth_required_subscriptions': 'boolean',
|
|
||||||
'nip40_expiration_enabled': 'boolean',
|
'nip40_expiration_enabled': 'boolean',
|
||||||
'nip40_expiration_strict': 'boolean',
|
|
||||||
'nip40_expiration_filter': 'boolean',
|
|
||||||
'relay_port': 'number',
|
|
||||||
'max_connections': 'number',
|
'max_connections': 'number',
|
||||||
'pow_min_difficulty': 'number',
|
'pow_min_difficulty': 'number',
|
||||||
'nip42_challenge_expiration': 'number',
|
'nip42_challenge_timeout': 'number',
|
||||||
'nip40_expiration_grace_period': 'number',
|
|
||||||
'max_subscriptions_per_client': 'number',
|
'max_subscriptions_per_client': 'number',
|
||||||
'max_total_subscriptions': 'number',
|
|
||||||
'max_filters_per_subscription': 'number',
|
|
||||||
'max_event_tags': 'number',
|
'max_event_tags': 'number',
|
||||||
'max_content_length': 'number',
|
'max_content_length': 'number'
|
||||||
'max_message_length': 'number',
|
|
||||||
'default_limit': 'number',
|
|
||||||
'max_limit': 'number'
|
|
||||||
};
|
};
|
||||||
|
|
||||||
const descriptions = {
|
const descriptions = {
|
||||||
'relay_pubkey': 'Relay Public Key (Read-only)',
|
'relay_pubkey': 'Relay Public Key (Read-only)',
|
||||||
'auth_enabled': 'Enable Authentication',
|
'auth_enabled': 'Enable Authentication',
|
||||||
'nip42_auth_required_events': 'Require Auth for Events',
|
'nip42_auth_required': 'Enable NIP-42 Cryptographic Authentication',
|
||||||
'nip42_auth_required_subscriptions': 'Require Auth for Subscriptions',
|
'nip42_auth_required_kinds': 'Event Kinds Requiring NIP-42 Auth',
|
||||||
'nip42_auth_required_kinds': 'Auth Required Event Kinds',
|
'nip42_challenge_timeout': 'NIP-42 Challenge Expiration Seconds',
|
||||||
'nip42_challenge_expiration': 'Auth Challenge Expiration (seconds)',
|
|
||||||
'relay_port': 'Relay Port',
|
|
||||||
'max_connections': 'Maximum Connections',
|
'max_connections': 'Maximum Connections',
|
||||||
'relay_description': 'Relay Description',
|
'relay_description': 'Relay Description',
|
||||||
'relay_contact': 'Relay Contact',
|
'relay_contact': 'Relay Contact',
|
||||||
'relay_software': 'Relay Software URL',
|
'pow_min_difficulty': 'Minimum Proof-of-Work Difficulty',
|
||||||
'relay_version': 'Relay Version',
|
|
||||||
'pow_min_difficulty': 'Minimum PoW Difficulty',
|
|
||||||
'pow_mode': 'PoW Mode',
|
|
||||||
'nip40_expiration_enabled': 'Enable Event Expiration',
|
'nip40_expiration_enabled': 'Enable Event Expiration',
|
||||||
'nip40_expiration_strict': 'Strict Expiration Mode',
|
|
||||||
'nip40_expiration_filter': 'Filter Expired Events',
|
|
||||||
'nip40_expiration_grace_period': 'Expiration Grace Period (seconds)',
|
|
||||||
'max_subscriptions_per_client': 'Max Subscriptions per Client',
|
'max_subscriptions_per_client': 'Max Subscriptions per Client',
|
||||||
'max_total_subscriptions': 'Max Total Subscriptions',
|
'max_event_tags': 'Maximum Tags per Event',
|
||||||
'max_filters_per_subscription': 'Max Filters per Subscription',
|
'max_content_length': 'Maximum Event Content Length'
|
||||||
'max_event_tags': 'Max Event Tags',
|
|
||||||
'max_content_length': 'Max Content Length',
|
|
||||||
'max_message_length': 'Max Message Length',
|
|
||||||
'default_limit': 'Default Query Limit',
|
|
||||||
'max_limit': 'Maximum Query Limit'
|
|
||||||
};
|
};
|
||||||
|
|
||||||
// Process configuration tags (no d tag filtering for ephemeral events)
|
// Process configuration tags (no d tag filtering for ephemeral events)
|
||||||
@@ -3452,7 +3417,7 @@
|
|||||||
logTestEvent('SENT', `Add Whitelist event: ${JSON.stringify(signedEvent)}`, 'EVENT');
|
logTestEvent('SENT', `Add Whitelist event: ${JSON.stringify(signedEvent)}`, 'EVENT');
|
||||||
|
|
||||||
// Publish via SimplePool
|
// Publish via SimplePool
|
||||||
const url = relayUrl.value.trim();
|
const url = relayConnectionUrl.value.trim();
|
||||||
const publishPromises = relayPool.publish([url], signedEvent);
|
const publishPromises = relayPool.publish([url], signedEvent);
|
||||||
|
|
||||||
// Use Promise.allSettled to capture per-relay outcomes instead of Promise.any
|
// Use Promise.allSettled to capture per-relay outcomes instead of Promise.any
|
||||||
@@ -3594,7 +3559,7 @@
|
|||||||
logTestEvent('SENT', `Signed test event: ${JSON.stringify(signedEvent)}`, 'EVENT');
|
logTestEvent('SENT', `Signed test event: ${JSON.stringify(signedEvent)}`, 'EVENT');
|
||||||
|
|
||||||
// Publish via SimplePool to the same relay with detailed error diagnostics
|
// Publish via SimplePool to the same relay with detailed error diagnostics
|
||||||
const url = relayUrl.value.trim();
|
const url = relayConnectionUrl.value.trim();
|
||||||
logTestEvent('INFO', `Publishing to relay: ${url}`, 'INFO');
|
logTestEvent('INFO', `Publishing to relay: ${url}`, 'INFO');
|
||||||
|
|
||||||
const publishPromises = relayPool.publish([url], signedEvent);
|
const publishPromises = relayPool.publish([url], signedEvent);
|
||||||
|
|||||||
@@ -139,11 +139,11 @@ compile_project() {
|
|||||||
print_warning "Clean failed or no Makefile found"
|
print_warning "Clean failed or no Makefile found"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Force regenerate version.h to pick up new tags
|
# Force regenerate main.h to pick up new tags
|
||||||
if make force-version > /dev/null 2>&1; then
|
if make force-version > /dev/null 2>&1; then
|
||||||
print_success "Regenerated version.h"
|
print_success "Regenerated main.h"
|
||||||
else
|
else
|
||||||
print_warning "Failed to regenerate version.h"
|
print_warning "Failed to regenerate main.h"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Compile the project
|
# Compile the project
|
||||||
|
|||||||
@@ -282,7 +282,7 @@ cd build
|
|||||||
# Start relay in background and capture its PID
|
# Start relay in background and capture its PID
|
||||||
if [ "$USE_TEST_KEYS" = true ]; then
|
if [ "$USE_TEST_KEYS" = true ]; then
|
||||||
echo "Using deterministic test keys for development..."
|
echo "Using deterministic test keys for development..."
|
||||||
./$(basename $BINARY_PATH) -a aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa -r 1111111111111111111111111111111111111111111111111111111111111111 --strict-port > ../relay.log 2>&1 &
|
./$(basename $BINARY_PATH) -a 6a04ab98d9e4774ad806e302dddeb63bea16b5cb5f223ee77478e861bb583eb3 -r 1111111111111111111111111111111111111111111111111111111111111111 --strict-port > ../relay.log 2>&1 &
|
||||||
elif [ -n "$RELAY_ARGS" ]; then
|
elif [ -n "$RELAY_ARGS" ]; then
|
||||||
echo "Starting relay with custom configuration..."
|
echo "Starting relay with custom configuration..."
|
||||||
./$(basename $BINARY_PATH) $RELAY_ARGS --strict-port > ../relay.log 2>&1 &
|
./$(basename $BINARY_PATH) $RELAY_ARGS --strict-port > ../relay.log 2>&1 &
|
||||||
|
|||||||
@@ -1,455 +0,0 @@
|
|||||||
# NIP-11 Relay Connection Implementation Plan
|
|
||||||
|
|
||||||
## Overview
|
|
||||||
Implement NIP-11 relay information fetching in the web admin interface to replace hardcoded relay pubkey and provide proper relay connection flow.
|
|
||||||
|
|
||||||
## Current Issues
|
|
||||||
1. **Hardcoded Relay Pubkey**: `getRelayPubkey()` returns hardcoded value `'4f355bdcb7cc0af728ef3cceb9615d90684bb5b2ca5f859ab0f0b704075871aa'`
|
|
||||||
2. **Relay URL in Debug Section**: Currently in "DEBUG - TEST FETCH WITHOUT LOGIN" section (lines 336-385)
|
|
||||||
3. **No Relay Verification**: Users can attempt admin operations without verifying relay identity
|
|
||||||
4. **Missing NIP-11 Support**: No fetching of relay information document
|
|
||||||
|
|
||||||
## Implementation Plan
|
|
||||||
|
|
||||||
### 1. New Relay Connection Section (HTML Structure)
|
|
||||||
|
|
||||||
Add after User Info section (around line 332):
|
|
||||||
|
|
||||||
```html
|
|
||||||
<!-- Relay Connection Section -->
|
|
||||||
<div class="section">
|
|
||||||
<h2>RELAY CONNECTION</h2>
|
|
||||||
<div class="input-group">
|
|
||||||
<label for="relay-url-input">Relay URL:</label>
|
|
||||||
<input type="text" id="relay-url-input" value="ws://localhost:8888" placeholder="ws://localhost:8888 or wss://relay.example.com">
|
|
||||||
</div>
|
|
||||||
<div class="inline-buttons">
|
|
||||||
<button type="button" id="connect-relay-btn">CONNECT TO RELAY</button>
|
|
||||||
<button type="button" id="disconnect-relay-btn" style="display: none;">DISCONNECT</button>
|
|
||||||
</div>
|
|
||||||
<div class="status disconnected" id="relay-connection-status">NOT CONNECTED</div>
|
|
||||||
|
|
||||||
<!-- Relay Information Display -->
|
|
||||||
<div id="relay-info-display" class="hidden">
|
|
||||||
<h3>Relay Information</h3>
|
|
||||||
<div class="user-info">
|
|
||||||
<div><strong>Name:</strong> <span id="relay-name">-</span></div>
|
|
||||||
<div><strong>Description:</strong> <span id="relay-description">-</span></div>
|
|
||||||
<div><strong>Public Key:</strong>
|
|
||||||
<div class="user-pubkey" id="relay-pubkey-display">-</div>
|
|
||||||
</div>
|
|
||||||
<div><strong>Software:</strong> <span id="relay-software">-</span></div>
|
|
||||||
<div><strong>Version:</strong> <span id="relay-version">-</span></div>
|
|
||||||
<div><strong>Contact:</strong> <span id="relay-contact">-</span></div>
|
|
||||||
<div><strong>Supported NIPs:</strong> <span id="relay-nips">-</span></div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
```
|
|
||||||
|
|
||||||
### 2. JavaScript Implementation
|
|
||||||
|
|
||||||
#### Global State Variables
|
|
||||||
Add to global state section (around line 535):
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Relay connection state
|
|
||||||
let relayInfo = null;
|
|
||||||
let isRelayConnected = false;
|
|
||||||
let relayWebSocket = null;
|
|
||||||
```
|
|
||||||
|
|
||||||
#### NIP-11 Fetching Function
|
|
||||||
Add new function:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Fetch relay information using NIP-11
|
|
||||||
async function fetchRelayInfo(relayUrl) {
|
|
||||||
try {
|
|
||||||
console.log('=== FETCHING RELAY INFO VIA NIP-11 ===');
|
|
||||||
console.log('Relay URL:', relayUrl);
|
|
||||||
|
|
||||||
// Convert WebSocket URL to HTTP URL for NIP-11
|
|
||||||
let httpUrl = relayUrl;
|
|
||||||
if (relayUrl.startsWith('ws://')) {
|
|
||||||
httpUrl = relayUrl.replace('ws://', 'http://');
|
|
||||||
} else if (relayUrl.startsWith('wss://')) {
|
|
||||||
httpUrl = relayUrl.replace('wss://', 'https://');
|
|
||||||
}
|
|
||||||
|
|
||||||
console.log('HTTP URL for NIP-11:', httpUrl);
|
|
||||||
|
|
||||||
// Fetch relay information document
|
|
||||||
const response = await fetch(httpUrl, {
|
|
||||||
method: 'GET',
|
|
||||||
headers: {
|
|
||||||
'Accept': 'application/nostr+json'
|
|
||||||
},
|
|
||||||
// Add timeout
|
|
||||||
signal: AbortSignal.timeout(10000) // 10 second timeout
|
|
||||||
});
|
|
||||||
|
|
||||||
if (!response.ok) {
|
|
||||||
throw new Error(`HTTP ${response.status}: ${response.statusText}`);
|
|
||||||
}
|
|
||||||
|
|
||||||
const contentType = response.headers.get('content-type');
|
|
||||||
if (!contentType || !contentType.includes('application/json')) {
|
|
||||||
throw new Error(`Invalid content type: ${contentType}. Expected application/json or application/nostr+json`);
|
|
||||||
}
|
|
||||||
|
|
||||||
const relayInfoData = await response.json();
|
|
||||||
console.log('Fetched relay info:', relayInfoData);
|
|
||||||
|
|
||||||
// Validate required fields
|
|
||||||
if (!relayInfoData.pubkey) {
|
|
||||||
throw new Error('Relay information missing required pubkey field');
|
|
||||||
}
|
|
||||||
|
|
||||||
// Validate pubkey format (64 hex characters)
|
|
||||||
if (!/^[0-9a-fA-F]{64}$/.test(relayInfoData.pubkey)) {
|
|
||||||
throw new Error(`Invalid relay pubkey format: ${relayInfoData.pubkey}`);
|
|
||||||
}
|
|
||||||
|
|
||||||
return relayInfoData;
|
|
||||||
|
|
||||||
} catch (error) {
|
|
||||||
console.error('Failed to fetch relay info:', error);
|
|
||||||
throw error;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### Relay Connection Function
|
|
||||||
Add new function:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Connect to relay and fetch information
|
|
||||||
async function connectToRelay() {
|
|
||||||
try {
|
|
||||||
const relayUrlInput = document.getElementById('relay-url-input');
|
|
||||||
const connectBtn = document.getElementById('connect-relay-btn');
|
|
||||||
const disconnectBtn = document.getElementById('disconnect-relay-btn');
|
|
||||||
const statusDiv = document.getElementById('relay-connection-status');
|
|
||||||
const infoDisplay = document.getElementById('relay-info-display');
|
|
||||||
|
|
||||||
const url = relayUrlInput.value.trim();
|
|
||||||
if (!url) {
|
|
||||||
throw new Error('Please enter a relay URL');
|
|
||||||
}
|
|
||||||
|
|
||||||
// Update UI to show connecting state
|
|
||||||
connectBtn.disabled = true;
|
|
||||||
statusDiv.textContent = 'CONNECTING...';
|
|
||||||
statusDiv.className = 'status connected';
|
|
||||||
|
|
||||||
console.log('Connecting to relay:', url);
|
|
||||||
|
|
||||||
// Fetch relay information via NIP-11
|
|
||||||
console.log('Fetching relay information...');
|
|
||||||
const fetchedRelayInfo = await fetchRelayInfo(url);
|
|
||||||
|
|
||||||
// Test WebSocket connection
|
|
||||||
console.log('Testing WebSocket connection...');
|
|
||||||
await testWebSocketConnection(url);
|
|
||||||
|
|
||||||
// Store relay information
|
|
||||||
relayInfo = fetchedRelayInfo;
|
|
||||||
isRelayConnected = true;
|
|
||||||
|
|
||||||
// Update UI with relay information
|
|
||||||
displayRelayInfo(relayInfo);
|
|
||||||
|
|
||||||
// Update connection status
|
|
||||||
statusDiv.textContent = 'CONNECTED';
|
|
||||||
statusDiv.className = 'status connected';
|
|
||||||
|
|
||||||
// Update button states
|
|
||||||
connectBtn.style.display = 'none';
|
|
||||||
disconnectBtn.style.display = 'inline-block';
|
|
||||||
relayUrlInput.disabled = true;
|
|
||||||
|
|
||||||
// Show relay info
|
|
||||||
infoDisplay.classList.remove('hidden');
|
|
||||||
|
|
||||||
console.log('Successfully connected to relay:', relayInfo.name || url);
|
|
||||||
log(`Connected to relay: ${relayInfo.name || url}`, 'INFO');
|
|
||||||
|
|
||||||
} catch (error) {
|
|
||||||
console.error('Failed to connect to relay:', error);
|
|
||||||
|
|
||||||
// Reset UI state
|
|
||||||
const connectBtn = document.getElementById('connect-relay-btn');
|
|
||||||
const statusDiv = document.getElementById('relay-connection-status');
|
|
||||||
|
|
||||||
connectBtn.disabled = false;
|
|
||||||
statusDiv.textContent = `CONNECTION FAILED: ${error.message}`;
|
|
||||||
statusDiv.className = 'status error';
|
|
||||||
|
|
||||||
// Clear any partial state
|
|
||||||
relayInfo = null;
|
|
||||||
isRelayConnected = false;
|
|
||||||
|
|
||||||
log(`Failed to connect to relay: ${error.message}`, 'ERROR');
|
|
||||||
}
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### WebSocket Connection Test
|
|
||||||
Add new function:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Test WebSocket connection to relay
|
|
||||||
async function testWebSocketConnection(url) {
|
|
||||||
return new Promise((resolve, reject) => {
|
|
||||||
const timeout = setTimeout(() => {
|
|
||||||
ws.close();
|
|
||||||
reject(new Error('WebSocket connection timeout'));
|
|
||||||
}, 5000);
|
|
||||||
|
|
||||||
const ws = new WebSocket(url);
|
|
||||||
|
|
||||||
ws.onopen = () => {
|
|
||||||
clearTimeout(timeout);
|
|
||||||
console.log('WebSocket connection successful');
|
|
||||||
ws.close();
|
|
||||||
resolve();
|
|
||||||
};
|
|
||||||
|
|
||||||
ws.onerror = (error) => {
|
|
||||||
clearTimeout(timeout);
|
|
||||||
console.error('WebSocket connection failed:', error);
|
|
||||||
reject(new Error('WebSocket connection failed'));
|
|
||||||
};
|
|
||||||
|
|
||||||
ws.onclose = (event) => {
|
|
||||||
if (event.code !== 1000) {
|
|
||||||
clearTimeout(timeout);
|
|
||||||
reject(new Error(`WebSocket closed with code ${event.code}: ${event.reason}`));
|
|
||||||
}
|
|
||||||
};
|
|
||||||
});
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### Display Relay Information
|
|
||||||
Add new function:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Display relay information in the UI
|
|
||||||
function displayRelayInfo(info) {
|
|
||||||
document.getElementById('relay-name').textContent = info.name || 'Unknown';
|
|
||||||
document.getElementById('relay-description').textContent = info.description || 'No description';
|
|
||||||
document.getElementById('relay-pubkey-display').textContent = info.pubkey || 'Unknown';
|
|
||||||
document.getElementById('relay-software').textContent = info.software || 'Unknown';
|
|
||||||
document.getElementById('relay-version').textContent = info.version || 'Unknown';
|
|
||||||
document.getElementById('relay-contact').textContent = info.contact || 'No contact info';
|
|
||||||
|
|
||||||
// Format supported NIPs
|
|
||||||
let nipsText = 'None specified';
|
|
||||||
if (info.supported_nips && Array.isArray(info.supported_nips) && info.supported_nips.length > 0) {
|
|
||||||
nipsText = info.supported_nips.map(nip => `NIP-${nip.toString().padStart(2, '0')}`).join(', ');
|
|
||||||
}
|
|
||||||
document.getElementById('relay-nips').textContent = nipsText;
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### Disconnect Function
|
|
||||||
Add new function:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Disconnect from relay
|
|
||||||
function disconnectFromRelay() {
|
|
||||||
console.log('Disconnecting from relay...');
|
|
||||||
|
|
||||||
// Clear relay state
|
|
||||||
relayInfo = null;
|
|
||||||
isRelayConnected = false;
|
|
||||||
|
|
||||||
// Close any existing connections
|
|
||||||
if (relayPool) {
|
|
||||||
const url = document.getElementById('relay-url-input').value.trim();
|
|
||||||
if (url) {
|
|
||||||
relayPool.close([url]);
|
|
||||||
}
|
|
||||||
relayPool = null;
|
|
||||||
subscriptionId = null;
|
|
||||||
}
|
|
||||||
|
|
||||||
// Reset UI
|
|
||||||
const connectBtn = document.getElementById('connect-relay-btn');
|
|
||||||
const disconnectBtn = document.getElementById('disconnect-relay-btn');
|
|
||||||
const statusDiv = document.getElementById('relay-connection-status');
|
|
||||||
const infoDisplay = document.getElementById('relay-info-display');
|
|
||||||
const relayUrlInput = document.getElementById('relay-url-input');
|
|
||||||
|
|
||||||
connectBtn.style.display = 'inline-block';
|
|
||||||
disconnectBtn.style.display = 'none';
|
|
||||||
connectBtn.disabled = false;
|
|
||||||
relayUrlInput.disabled = false;
|
|
||||||
|
|
||||||
statusDiv.textContent = 'NOT CONNECTED';
|
|
||||||
statusDiv.className = 'status disconnected';
|
|
||||||
|
|
||||||
infoDisplay.classList.add('hidden');
|
|
||||||
|
|
||||||
// Reset configuration status
|
|
||||||
updateConfigStatus(false);
|
|
||||||
|
|
||||||
log('Disconnected from relay', 'INFO');
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### Update getRelayPubkey Function
|
|
||||||
Replace existing function (around line 3142):
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Helper function to get relay pubkey from connected relay info
|
|
||||||
function getRelayPubkey() {
|
|
||||||
if (relayInfo && relayInfo.pubkey) {
|
|
||||||
return relayInfo.pubkey;
|
|
||||||
}
|
|
||||||
|
|
||||||
// Fallback to hardcoded value if no relay connected (for testing)
|
|
||||||
console.warn('No relay connected, using fallback pubkey');
|
|
||||||
return '4f355bdcb7cc0af728ef3cceb9615d90684bb5b2ca5f859ab0f0b704075871aa';
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
### 3. Event Handlers
|
|
||||||
|
|
||||||
Add event handlers in the DOMContentLoaded section:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
// Relay connection event handlers
|
|
||||||
const connectRelayBtn = document.getElementById('connect-relay-btn');
|
|
||||||
const disconnectRelayBtn = document.getElementById('disconnect-relay-btn');
|
|
||||||
|
|
||||||
if (connectRelayBtn) {
|
|
||||||
connectRelayBtn.addEventListener('click', function(e) {
|
|
||||||
e.preventDefault();
|
|
||||||
connectToRelay().catch(error => {
|
|
||||||
console.error('Connect to relay failed:', error);
|
|
||||||
});
|
|
||||||
});
|
|
||||||
}
|
|
||||||
|
|
||||||
if (disconnectRelayBtn) {
|
|
||||||
disconnectRelayBtn.addEventListener('click', function(e) {
|
|
||||||
e.preventDefault();
|
|
||||||
disconnectFromRelay();
|
|
||||||
});
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
### 4. Update Existing Functions
|
|
||||||
|
|
||||||
#### Update fetchConfiguration Function
|
|
||||||
Add relay connection check at the beginning:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
async function fetchConfiguration() {
|
|
||||||
try {
|
|
||||||
console.log('=== FETCHING CONFIGURATION VIA ADMIN API ===');
|
|
||||||
|
|
||||||
// Check if relay is connected
|
|
||||||
if (!isRelayConnected || !relayInfo) {
|
|
||||||
throw new Error('Must be connected to relay first. Please connect to relay in the Relay Connection section.');
|
|
||||||
}
|
|
||||||
|
|
||||||
// ... rest of existing function
|
|
||||||
} catch (error) {
|
|
||||||
// ... existing error handling
|
|
||||||
}
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
#### Update subscribeToConfiguration Function
|
|
||||||
Add relay connection check:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
async function subscribeToConfiguration() {
|
|
||||||
try {
|
|
||||||
console.log('=== STARTING SIMPLEPOOL CONFIGURATION SUBSCRIPTION ===');
|
|
||||||
|
|
||||||
if (!isRelayConnected || !relayInfo) {
|
|
||||||
console.error('Must be connected to relay first');
|
|
||||||
return false;
|
|
||||||
}
|
|
||||||
|
|
||||||
// Use the relay URL from the connection section instead of the debug section
|
|
||||||
const url = document.getElementById('relay-url-input').value.trim();
|
|
||||||
|
|
||||||
// ... rest of existing function
|
|
||||||
} catch (error) {
|
|
||||||
// ... existing error handling
|
|
||||||
}
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
### 5. Update UI Flow
|
|
||||||
|
|
||||||
#### Modify showMainInterface Function
|
|
||||||
Update to show relay connection requirement:
|
|
||||||
|
|
||||||
```javascript
|
|
||||||
function showMainInterface() {
|
|
||||||
loginSection.classList.add('hidden');
|
|
||||||
mainInterface.classList.remove('hidden');
|
|
||||||
userPubkeyDisplay.textContent = userPubkey;
|
|
||||||
|
|
||||||
// Show message about relay connection requirement
|
|
||||||
if (!isRelayConnected) {
|
|
||||||
log('Please connect to a relay to access admin functions', 'INFO');
|
|
||||||
}
|
|
||||||
}
|
|
||||||
```
|
|
||||||
|
|
||||||
### 6. Remove/Update Debug Section
|
|
||||||
|
|
||||||
#### Option 1: Remove Debug Section Entirely
|
|
||||||
Remove the "DEBUG - TEST FETCH WITHOUT LOGIN" section (lines 335-385) since relay URL is now in the proper connection section.
|
|
||||||
|
|
||||||
#### Option 2: Keep Debug Section for Testing
|
|
||||||
Update the debug section to use the connected relay URL and add a note that it's for testing purposes.
|
|
||||||
|
|
||||||
### 7. Error Handling
|
|
||||||
|
|
||||||
Add comprehensive error handling for:
|
|
||||||
- Network timeouts
|
|
||||||
- Invalid relay URLs
|
|
||||||
- Missing NIP-11 support
|
|
||||||
- Invalid relay pubkey format
|
|
||||||
- WebSocket connection failures
|
|
||||||
- CORS issues
|
|
||||||
|
|
||||||
### 8. Security Considerations
|
|
||||||
|
|
||||||
- Validate relay pubkey format (64 hex characters)
|
|
||||||
- Verify relay identity before admin operations
|
|
||||||
- Handle CORS properly for NIP-11 requests
|
|
||||||
- Sanitize relay information display
|
|
||||||
- Warn users about connecting to untrusted relays
|
|
||||||
|
|
||||||
## Testing Plan
|
|
||||||
|
|
||||||
1. **NIP-11 Fetching**: Test with various relay URLs (localhost, remote relays)
|
|
||||||
2. **Error Handling**: Test with invalid URLs, non-Nostr servers, network failures
|
|
||||||
3. **WebSocket Connection**: Verify WebSocket connectivity after NIP-11 fetch
|
|
||||||
4. **Admin API Integration**: Ensure admin commands use correct relay pubkey
|
|
||||||
5. **UI Flow**: Test complete user journey from login → relay connection → admin operations
|
|
||||||
|
|
||||||
## Benefits
|
|
||||||
|
|
||||||
1. **Proper Relay Identification**: Uses actual relay pubkey instead of hardcoded value
|
|
||||||
2. **Better UX**: Clear connection flow and relay information display
|
|
||||||
3. **Protocol Compliance**: Implements NIP-11 standard for relay discovery
|
|
||||||
4. **Security**: Verifies relay identity before admin operations
|
|
||||||
5. **Flexibility**: Works with any NIP-11 compliant relay
|
|
||||||
|
|
||||||
## Migration Notes
|
|
||||||
|
|
||||||
- Existing users will need to connect to relay after this update
|
|
||||||
- Debug section can be kept for development/testing purposes
|
|
||||||
- All admin functions will require relay connection
|
|
||||||
- Relay pubkey will be dynamically fetched instead of hardcoded
|
|
||||||
194
src/config.c
194
src/config.c
@@ -112,6 +112,12 @@ static int get_cache_timeout(void) {
|
|||||||
return 300; // Default 5 minutes
|
return 300; // Default 5 minutes
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Helper function to safely return dynamically allocated string from static buffer
|
||||||
|
static char* safe_strdup_from_static(const char* static_str) {
|
||||||
|
if (!static_str) return NULL;
|
||||||
|
return strdup(static_str);
|
||||||
|
}
|
||||||
|
|
||||||
// Force cache refresh - invalidates current cache
|
// Force cache refresh - invalidates current cache
|
||||||
void force_config_cache_refresh(void) {
|
void force_config_cache_refresh(void) {
|
||||||
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
@@ -399,10 +405,12 @@ const char* get_config_value(const char* key) {
|
|||||||
|
|
||||||
// Special fast path for frequently accessed keys via unified cache
|
// Special fast path for frequently accessed keys via unified cache
|
||||||
if (strcmp(key, "admin_pubkey") == 0) {
|
if (strcmp(key, "admin_pubkey") == 0) {
|
||||||
return get_admin_pubkey_cached();
|
const char* cached_value = get_admin_pubkey_cached();
|
||||||
|
return safe_strdup_from_static(cached_value);
|
||||||
}
|
}
|
||||||
if (strcmp(key, "relay_pubkey") == 0) {
|
if (strcmp(key, "relay_pubkey") == 0) {
|
||||||
return get_relay_pubkey_cached();
|
const char* cached_value = get_relay_pubkey_cached();
|
||||||
|
return safe_strdup_from_static(cached_value);
|
||||||
}
|
}
|
||||||
|
|
||||||
// For other keys, try config table first
|
// For other keys, try config table first
|
||||||
@@ -439,8 +447,9 @@ const char* get_config_value(const char* key) {
|
|||||||
strncpy(g_unified_cache.temp_buffer, cJSON_GetStringValue(tag_value),
|
strncpy(g_unified_cache.temp_buffer, cJSON_GetStringValue(tag_value),
|
||||||
sizeof(g_unified_cache.temp_buffer) - 1);
|
sizeof(g_unified_cache.temp_buffer) - 1);
|
||||||
g_unified_cache.temp_buffer[sizeof(g_unified_cache.temp_buffer) - 1] = '\0';
|
g_unified_cache.temp_buffer[sizeof(g_unified_cache.temp_buffer) - 1] = '\0';
|
||||||
|
const char* result = safe_strdup_from_static(g_unified_cache.temp_buffer);
|
||||||
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
return g_unified_cache.temp_buffer;
|
return result;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@@ -461,9 +470,13 @@ int get_config_int(const char* key, int default_value) {
|
|||||||
long val = strtol(str_value, &endptr, 10);
|
long val = strtol(str_value, &endptr, 10);
|
||||||
|
|
||||||
if (endptr == str_value || *endptr != '\0') {
|
if (endptr == str_value || *endptr != '\0') {
|
||||||
|
// Free the dynamically allocated string
|
||||||
|
free((char*)str_value);
|
||||||
return default_value;
|
return default_value;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Free the dynamically allocated string
|
||||||
|
free((char*)str_value);
|
||||||
return (int)val;
|
return (int)val;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -473,17 +486,22 @@ int get_config_bool(const char* key, int default_value) {
|
|||||||
return default_value;
|
return default_value;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
int result;
|
||||||
if (strcasecmp(str_value, "true") == 0 ||
|
if (strcasecmp(str_value, "true") == 0 ||
|
||||||
strcasecmp(str_value, "yes") == 0 ||
|
strcasecmp(str_value, "yes") == 0 ||
|
||||||
strcasecmp(str_value, "1") == 0) {
|
strcasecmp(str_value, "1") == 0) {
|
||||||
return 1;
|
result = 1;
|
||||||
} else if (strcasecmp(str_value, "false") == 0 ||
|
} else if (strcasecmp(str_value, "false") == 0 ||
|
||||||
strcasecmp(str_value, "no") == 0 ||
|
strcasecmp(str_value, "no") == 0 ||
|
||||||
strcasecmp(str_value, "0") == 0) {
|
strcasecmp(str_value, "0") == 0) {
|
||||||
return 0;
|
result = 0;
|
||||||
|
} else {
|
||||||
|
result = default_value;
|
||||||
}
|
}
|
||||||
|
|
||||||
return default_value;
|
// Free the dynamically allocated string
|
||||||
|
free((char*)str_value);
|
||||||
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
// ================================
|
// ================================
|
||||||
@@ -921,39 +939,48 @@ int first_time_startup_sequence(const cli_options_t* cli_options) {
|
|||||||
// 1. Generate or use provided admin keypair
|
// 1. Generate or use provided admin keypair
|
||||||
unsigned char admin_privkey_bytes[32];
|
unsigned char admin_privkey_bytes[32];
|
||||||
char admin_privkey[65], admin_pubkey[65];
|
char admin_privkey[65], admin_pubkey[65];
|
||||||
|
int generated_admin_key = 0; // Track if we generated a new admin key
|
||||||
|
|
||||||
if (cli_options && strlen(cli_options->admin_privkey_override) == 64) {
|
if (cli_options && strlen(cli_options->admin_pubkey_override) == 64) {
|
||||||
// Use provided admin private key
|
// Use provided admin public key directly - skip private key generation entirely
|
||||||
log_info("Using provided admin private key override");
|
log_info("Using provided admin public key override - skipping private key generation");
|
||||||
strncpy(admin_privkey, cli_options->admin_privkey_override, sizeof(admin_privkey) - 1);
|
strncpy(admin_pubkey, cli_options->admin_pubkey_override, sizeof(admin_pubkey) - 1);
|
||||||
admin_privkey[sizeof(admin_privkey) - 1] = '\0';
|
admin_pubkey[sizeof(admin_pubkey) - 1] = '\0';
|
||||||
|
|
||||||
// Convert hex string to bytes
|
// Validate the public key format (must be 64 hex characters)
|
||||||
if (nostr_hex_to_bytes(admin_privkey, admin_privkey_bytes, 32) != NOSTR_SUCCESS) {
|
for (int i = 0; i < 64; i++) {
|
||||||
log_error("Failed to convert admin private key hex to bytes");
|
char c = admin_pubkey[i];
|
||||||
|
if (!((c >= '0' && c <= '9') ||
|
||||||
|
(c >= 'a' && c <= 'f') ||
|
||||||
|
(c >= 'A' && c <= 'F'))) {
|
||||||
|
log_error("Invalid admin public key format - must contain only hex characters");
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Validate the private key
|
|
||||||
if (nostr_ec_private_key_verify(admin_privkey_bytes) != NOSTR_SUCCESS) {
|
|
||||||
log_error("Provided admin private key is invalid");
|
|
||||||
return -1;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Skip private key generation - we only need the pubkey for admin verification
|
||||||
|
// Set a dummy private key that will never be used (not displayed or stored)
|
||||||
|
memset(admin_privkey_bytes, 0, 32); // Zero out for security
|
||||||
|
memset(admin_privkey, 0, sizeof(admin_privkey)); // Zero out the hex string
|
||||||
|
generated_admin_key = 0; // Did not generate a new key
|
||||||
} else {
|
} else {
|
||||||
// Generate random admin keypair using /dev/urandom + nostr_core_lib
|
// Generate random admin keypair using /dev/urandom + nostr_core_lib
|
||||||
|
log_info("Generating random admin keypair");
|
||||||
if (generate_random_private_key_bytes(admin_privkey_bytes) != 0) {
|
if (generate_random_private_key_bytes(admin_privkey_bytes) != 0) {
|
||||||
log_error("Failed to generate admin private key");
|
log_error("Failed to generate admin private key");
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
nostr_bytes_to_hex(admin_privkey_bytes, 32, admin_privkey);
|
nostr_bytes_to_hex(admin_privkey_bytes, 32, admin_privkey);
|
||||||
}
|
|
||||||
|
|
||||||
|
// Derive public key from private key
|
||||||
unsigned char admin_pubkey_bytes[32];
|
unsigned char admin_pubkey_bytes[32];
|
||||||
if (nostr_ec_public_key_from_private_key(admin_privkey_bytes, admin_pubkey_bytes) != NOSTR_SUCCESS) {
|
if (nostr_ec_public_key_from_private_key(admin_privkey_bytes, admin_pubkey_bytes) != NOSTR_SUCCESS) {
|
||||||
log_error("Failed to derive admin public key");
|
log_error("Failed to derive admin public key");
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
nostr_bytes_to_hex(admin_pubkey_bytes, 32, admin_pubkey);
|
nostr_bytes_to_hex(admin_pubkey_bytes, 32, admin_pubkey);
|
||||||
|
generated_admin_key = 1; // Generated a new key
|
||||||
|
}
|
||||||
|
|
||||||
// 2. Generate or use provided relay keypair
|
// 2. Generate or use provided relay keypair
|
||||||
unsigned char relay_privkey_bytes[32];
|
unsigned char relay_privkey_bytes[32];
|
||||||
@@ -1011,35 +1038,15 @@ int first_time_startup_sequence(const cli_options_t* cli_options) {
|
|||||||
g_temp_relay_privkey[sizeof(g_temp_relay_privkey) - 1] = '\0';
|
g_temp_relay_privkey[sizeof(g_temp_relay_privkey) - 1] = '\0';
|
||||||
log_info("Relay private key cached for secure storage after database initialization");
|
log_info("Relay private key cached for secure storage after database initialization");
|
||||||
|
|
||||||
// 6. Create initial configuration event using defaults (without private key)
|
// 6. Handle configuration setup - defaults will be populated after database initialization
|
||||||
cJSON* config_event = create_default_config_event(admin_privkey_bytes, relay_privkey, relay_pubkey, cli_options);
|
log_info("Configuration setup prepared - defaults will be populated after database initialization");
|
||||||
if (!config_event) {
|
|
||||||
log_error("Failed to create default configuration event");
|
|
||||||
return -1;
|
|
||||||
}
|
|
||||||
|
|
||||||
// 7. Process configuration through admin API instead of storing in events table
|
|
||||||
if (process_startup_config_event_with_fallback(config_event) == 0) {
|
|
||||||
log_success("Initial configuration processed successfully through admin API");
|
|
||||||
} else {
|
|
||||||
log_warning("Failed to process initial configuration - will retry after database init");
|
|
||||||
// Cache the event for later processing
|
|
||||||
if (g_pending_config_event) {
|
|
||||||
cJSON_Delete(g_pending_config_event);
|
|
||||||
}
|
|
||||||
g_pending_config_event = cJSON_Duplicate(config_event, 1);
|
|
||||||
}
|
|
||||||
|
|
||||||
// 8. Cache the current config
|
// CLI overrides will be applied after database initialization in main.c
|
||||||
if (g_current_config) {
|
// This prevents "g_db is NULL" errors during first-time startup
|
||||||
cJSON_Delete(g_current_config);
|
|
||||||
}
|
|
||||||
g_current_config = cJSON_Duplicate(config_event, 1);
|
|
||||||
|
|
||||||
// 9. Clean up
|
// 10. Print admin private key for user to save (only if we generated a new key)
|
||||||
cJSON_Delete(config_event);
|
if (generated_admin_key) {
|
||||||
|
|
||||||
// 10. Print admin private key for user to save
|
|
||||||
printf("\n");
|
printf("\n");
|
||||||
printf("=================================================================\n");
|
printf("=================================================================\n");
|
||||||
printf("IMPORTANT: SAVE THIS ADMIN PRIVATE KEY SECURELY!\n");
|
printf("IMPORTANT: SAVE THIS ADMIN PRIVATE KEY SECURELY!\n");
|
||||||
@@ -1052,6 +1059,18 @@ int first_time_startup_sequence(const cli_options_t* cli_options) {
|
|||||||
printf("Store it safely - it will not be displayed again.\n");
|
printf("Store it safely - it will not be displayed again.\n");
|
||||||
printf("=================================================================\n");
|
printf("=================================================================\n");
|
||||||
printf("\n");
|
printf("\n");
|
||||||
|
} else {
|
||||||
|
printf("\n");
|
||||||
|
printf("=================================================================\n");
|
||||||
|
printf("RELAY STARTUP COMPLETE\n");
|
||||||
|
printf("=================================================================\n");
|
||||||
|
printf("Using provided admin public key for authentication\n");
|
||||||
|
printf("Admin Public Key: %s\n", admin_pubkey);
|
||||||
|
printf("Relay Public Key: %s\n", relay_pubkey);
|
||||||
|
printf("\nDatabase: %s\n", g_database_path);
|
||||||
|
printf("=================================================================\n");
|
||||||
|
printf("\n");
|
||||||
|
}
|
||||||
|
|
||||||
log_success("First-time startup sequence completed");
|
log_success("First-time startup sequence completed");
|
||||||
return 0;
|
return 0;
|
||||||
@@ -1083,6 +1102,11 @@ int startup_existing_relay(const char* relay_pubkey) {
|
|||||||
g_database_path[sizeof(g_database_path) - 1] = '\0';
|
g_database_path[sizeof(g_database_path) - 1] = '\0';
|
||||||
free(db_name);
|
free(db_name);
|
||||||
|
|
||||||
|
// Ensure default configuration values are populated (for any missing keys)
|
||||||
|
if (populate_default_config_values() != 0) {
|
||||||
|
log_warning("Failed to populate default config values for existing relay - continuing");
|
||||||
|
}
|
||||||
|
|
||||||
// Configuration will be migrated from events to table after database initialization
|
// Configuration will be migrated from events to table after database initialization
|
||||||
log_info("Configuration migration will be performed after database is available");
|
log_info("Configuration migration will be performed after database is available");
|
||||||
|
|
||||||
@@ -1829,12 +1853,71 @@ const char* get_config_value_from_table(const char* key) {
|
|||||||
if (sqlite3_step(stmt) == SQLITE_ROW) {
|
if (sqlite3_step(stmt) == SQLITE_ROW) {
|
||||||
const char* value = (char*)sqlite3_column_text(stmt, 0);
|
const char* value = (char*)sqlite3_column_text(stmt, 0);
|
||||||
if (value) {
|
if (value) {
|
||||||
// Use unified cache buffer with thread safety
|
// For NIP-11 fields, store in cache buffers but return dynamically allocated strings for consistency
|
||||||
|
if (strcmp(key, "relay_name") == 0) {
|
||||||
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
strncpy(g_unified_cache.temp_buffer, value, sizeof(g_unified_cache.temp_buffer) - 1);
|
strncpy(g_unified_cache.relay_info.name, value, sizeof(g_unified_cache.relay_info.name) - 1);
|
||||||
g_unified_cache.temp_buffer[sizeof(g_unified_cache.temp_buffer) - 1] = '\0';
|
g_unified_cache.relay_info.name[sizeof(g_unified_cache.relay_info.name) - 1] = '\0';
|
||||||
result = g_unified_cache.temp_buffer;
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "relay_description") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.description, value, sizeof(g_unified_cache.relay_info.description) - 1);
|
||||||
|
g_unified_cache.relay_info.description[sizeof(g_unified_cache.relay_info.description) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "relay_contact") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.contact, value, sizeof(g_unified_cache.relay_info.contact) - 1);
|
||||||
|
g_unified_cache.relay_info.contact[sizeof(g_unified_cache.relay_info.contact) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "relay_software") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.software, value, sizeof(g_unified_cache.relay_info.software) - 1);
|
||||||
|
g_unified_cache.relay_info.software[sizeof(g_unified_cache.relay_info.software) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "relay_version") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.version, value, sizeof(g_unified_cache.relay_info.version) - 1);
|
||||||
|
g_unified_cache.relay_info.version[sizeof(g_unified_cache.relay_info.version) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "supported_nips") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.supported_nips_str, value, sizeof(g_unified_cache.relay_info.supported_nips_str) - 1);
|
||||||
|
g_unified_cache.relay_info.supported_nips_str[sizeof(g_unified_cache.relay_info.supported_nips_str) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "language_tags") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.language_tags_str, value, sizeof(g_unified_cache.relay_info.language_tags_str) - 1);
|
||||||
|
g_unified_cache.relay_info.language_tags_str[sizeof(g_unified_cache.relay_info.language_tags_str) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "relay_countries") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.relay_countries_str, value, sizeof(g_unified_cache.relay_info.relay_countries_str) - 1);
|
||||||
|
g_unified_cache.relay_info.relay_countries_str[sizeof(g_unified_cache.relay_info.relay_countries_str) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "posting_policy") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.posting_policy, value, sizeof(g_unified_cache.relay_info.posting_policy) - 1);
|
||||||
|
g_unified_cache.relay_info.posting_policy[sizeof(g_unified_cache.relay_info.posting_policy) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else if (strcmp(key, "payments_url") == 0) {
|
||||||
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
strncpy(g_unified_cache.relay_info.payments_url, value, sizeof(g_unified_cache.relay_info.payments_url) - 1);
|
||||||
|
g_unified_cache.relay_info.payments_url[sizeof(g_unified_cache.relay_info.payments_url) - 1] = '\0';
|
||||||
|
result = strdup(value); // Return dynamically allocated copy
|
||||||
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
} else {
|
||||||
|
// For other keys, return a dynamically allocated string to prevent buffer reuse
|
||||||
|
result = strdup(value);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -3905,12 +3988,17 @@ const char* get_config_value_hybrid(const char* key) {
|
|||||||
if (is_config_table_ready()) {
|
if (is_config_table_ready()) {
|
||||||
const char* table_value = get_config_value_from_table(key);
|
const char* table_value = get_config_value_from_table(key);
|
||||||
if (table_value) {
|
if (table_value) {
|
||||||
return table_value;
|
return table_value; // Already dynamically allocated
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
// Fall back to event-based config
|
// Fall back to event-based config, but ensure it's dynamically allocated
|
||||||
return get_config_value(key);
|
const char* fallback_value = get_config_value(key);
|
||||||
|
if (fallback_value) {
|
||||||
|
return strdup(fallback_value); // Make a copy since fallback might be static
|
||||||
|
}
|
||||||
|
|
||||||
|
return NULL;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Check if config table is ready
|
// Check if config table is ready
|
||||||
|
|||||||
@@ -56,6 +56,11 @@ typedef struct {
|
|||||||
char version[64];
|
char version[64];
|
||||||
char privacy_policy[RELAY_URL_MAX_LENGTH];
|
char privacy_policy[RELAY_URL_MAX_LENGTH];
|
||||||
char terms_of_service[RELAY_URL_MAX_LENGTH];
|
char terms_of_service[RELAY_URL_MAX_LENGTH];
|
||||||
|
// Raw string values for parsing into cJSON arrays
|
||||||
|
char supported_nips_str[CONFIG_VALUE_MAX_LENGTH];
|
||||||
|
char language_tags_str[CONFIG_VALUE_MAX_LENGTH];
|
||||||
|
char relay_countries_str[CONFIG_VALUE_MAX_LENGTH];
|
||||||
|
// Parsed cJSON arrays
|
||||||
cJSON* supported_nips;
|
cJSON* supported_nips;
|
||||||
cJSON* limitation;
|
cJSON* limitation;
|
||||||
cJSON* retention;
|
cJSON* retention;
|
||||||
@@ -96,7 +101,7 @@ typedef struct {
|
|||||||
// Command line options structure for first-time startup
|
// Command line options structure for first-time startup
|
||||||
typedef struct {
|
typedef struct {
|
||||||
int port_override; // -1 = not set, >0 = port value
|
int port_override; // -1 = not set, >0 = port value
|
||||||
char admin_privkey_override[65]; // Empty string = not set, 64-char hex = override
|
char admin_pubkey_override[65]; // Empty string = not set, 64-char hex = override
|
||||||
char relay_privkey_override[65]; // Empty string = not set, 64-char hex = override
|
char relay_privkey_override[65]; // Empty string = not set, 64-char hex = override
|
||||||
int strict_port; // 0 = allow port increment, 1 = fail if exact port unavailable
|
int strict_port; // 0 = allow port increment, 1 = fail if exact port unavailable
|
||||||
} cli_options_t;
|
} cli_options_t;
|
||||||
|
|||||||
@@ -3,6 +3,7 @@
|
|||||||
|
|
||||||
#include <cjson/cJSON.h>
|
#include <cjson/cJSON.h>
|
||||||
#include "config.h" // For cli_options_t definition
|
#include "config.h" // For cli_options_t definition
|
||||||
|
#include "main.h" // For relay metadata constants
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Default Configuration Event Template
|
* Default Configuration Event Template
|
||||||
@@ -33,10 +34,16 @@ static const struct {
|
|||||||
{"max_connections", "100"},
|
{"max_connections", "100"},
|
||||||
|
|
||||||
// NIP-11 Relay Information (relay keys will be populated at runtime)
|
// NIP-11 Relay Information (relay keys will be populated at runtime)
|
||||||
{"relay_description", "High-performance C Nostr relay with SQLite storage"},
|
{"relay_name", RELAY_NAME},
|
||||||
{"relay_contact", ""},
|
{"relay_description", RELAY_DESCRIPTION},
|
||||||
{"relay_software", "https://git.laantungir.net/laantungir/c-relay.git"},
|
{"relay_contact", RELAY_CONTACT},
|
||||||
{"relay_version", "v1.0.0"},
|
{"relay_software", RELAY_SOFTWARE},
|
||||||
|
{"relay_version", RELAY_VERSION},
|
||||||
|
{"supported_nips", SUPPORTED_NIPS},
|
||||||
|
{"language_tags", LANGUAGE_TAGS},
|
||||||
|
{"relay_countries", RELAY_COUNTRIES},
|
||||||
|
{"posting_policy", POSTING_POLICY},
|
||||||
|
{"payments_url", PAYMENTS_URL},
|
||||||
|
|
||||||
// NIP-13 Proof of Work (pow_min_difficulty = 0 means PoW disabled)
|
// NIP-13 Proof of Work (pow_min_difficulty = 0 means PoW disabled)
|
||||||
{"pow_min_difficulty", "0"},
|
{"pow_min_difficulty", "0"},
|
||||||
|
|||||||
118
src/main.c
118
src/main.c
@@ -348,18 +348,18 @@ int init_database(const char* database_path_override) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
if (!has_auth_rules) {
|
if (!has_auth_rules) {
|
||||||
// Add auth_rules table
|
// Add auth_rules table matching sql_schema.h
|
||||||
const char* create_auth_rules_sql =
|
const char* create_auth_rules_sql =
|
||||||
"CREATE TABLE IF NOT EXISTS auth_rules ("
|
"CREATE TABLE IF NOT EXISTS auth_rules ("
|
||||||
" id INTEGER PRIMARY KEY AUTOINCREMENT,"
|
" id INTEGER PRIMARY KEY AUTOINCREMENT,"
|
||||||
" rule_type TEXT NOT NULL," // 'pubkey_whitelist', 'pubkey_blacklist', 'hash_blacklist'
|
" rule_type TEXT NOT NULL CHECK (rule_type IN ('whitelist', 'blacklist', 'rate_limit', 'auth_required')),"
|
||||||
" operation TEXT NOT NULL," // 'event', 'event_kind_1', etc.
|
" pattern_type TEXT NOT NULL CHECK (pattern_type IN ('pubkey', 'kind', 'ip', 'global')),"
|
||||||
" rule_target TEXT NOT NULL," // pubkey, hash, or other identifier
|
" pattern_value TEXT,"
|
||||||
" enabled INTEGER DEFAULT 1," // 0 = disabled, 1 = enabled
|
" action TEXT NOT NULL CHECK (action IN ('allow', 'deny', 'require_auth', 'rate_limit')),"
|
||||||
" priority INTEGER DEFAULT 1000," // Lower numbers = higher priority
|
" parameters TEXT,"
|
||||||
" description TEXT," // Optional description
|
" active INTEGER NOT NULL DEFAULT 1,"
|
||||||
" created_at INTEGER DEFAULT (strftime('%s', 'now')),"
|
" created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),"
|
||||||
" UNIQUE(rule_type, operation, rule_target)"
|
" updated_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now'))"
|
||||||
");";
|
");";
|
||||||
|
|
||||||
char* error_msg = NULL;
|
char* error_msg = NULL;
|
||||||
@@ -373,6 +373,24 @@ int init_database(const char* database_path_override) {
|
|||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
log_success("Created auth_rules table");
|
log_success("Created auth_rules table");
|
||||||
|
|
||||||
|
// Add indexes for auth_rules table
|
||||||
|
const char* create_auth_rules_indexes_sql =
|
||||||
|
"CREATE INDEX IF NOT EXISTS idx_auth_rules_pattern ON auth_rules(pattern_type, pattern_value);"
|
||||||
|
"CREATE INDEX IF NOT EXISTS idx_auth_rules_type ON auth_rules(rule_type);"
|
||||||
|
"CREATE INDEX IF NOT EXISTS idx_auth_rules_active ON auth_rules(active);";
|
||||||
|
|
||||||
|
char* index_error_msg = NULL;
|
||||||
|
int index_rc = sqlite3_exec(g_db, create_auth_rules_indexes_sql, NULL, NULL, &index_error_msg);
|
||||||
|
if (index_rc != SQLITE_OK) {
|
||||||
|
char index_error_log[512];
|
||||||
|
snprintf(index_error_log, sizeof(index_error_log), "Failed to create auth_rules indexes: %s",
|
||||||
|
index_error_msg ? index_error_msg : "unknown error");
|
||||||
|
log_error(index_error_log);
|
||||||
|
if (index_error_msg) sqlite3_free(index_error_msg);
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
log_success("Created auth_rules indexes");
|
||||||
} else {
|
} else {
|
||||||
log_info("auth_rules table already exists, skipping creation");
|
log_info("auth_rules table already exists, skipping creation");
|
||||||
}
|
}
|
||||||
@@ -1204,9 +1222,9 @@ void print_usage(const char* program_name) {
|
|||||||
printf(" -h, --help Show this help message\n");
|
printf(" -h, --help Show this help message\n");
|
||||||
printf(" -v, --version Show version information\n");
|
printf(" -v, --version Show version information\n");
|
||||||
printf(" -p, --port PORT Override relay port (first-time startup only)\n");
|
printf(" -p, --port PORT Override relay port (first-time startup only)\n");
|
||||||
printf(" -a, --admin-privkey HEX Override admin private key (64-char hex)\n");
|
|
||||||
printf(" -r, --relay-privkey HEX Override relay private key (64-char hex)\n");
|
|
||||||
printf(" --strict-port Fail if exact port is unavailable (no port increment)\n");
|
printf(" --strict-port Fail if exact port is unavailable (no port increment)\n");
|
||||||
|
printf(" -a, --admin-pubkey HEX Override admin public key (64-char hex)\n");
|
||||||
|
printf(" -r, --relay-privkey HEX Override relay private key (64-char hex)\n");
|
||||||
printf("\n");
|
printf("\n");
|
||||||
printf("Configuration:\n");
|
printf("Configuration:\n");
|
||||||
printf(" This relay uses event-based configuration stored in the database.\n");
|
printf(" This relay uses event-based configuration stored in the database.\n");
|
||||||
@@ -1242,7 +1260,7 @@ int main(int argc, char* argv[]) {
|
|||||||
// Initialize CLI options structure
|
// Initialize CLI options structure
|
||||||
cli_options_t cli_options = {
|
cli_options_t cli_options = {
|
||||||
.port_override = -1, // -1 = not set
|
.port_override = -1, // -1 = not set
|
||||||
.admin_privkey_override = {0}, // Empty string = not set
|
.admin_pubkey_override = {0}, // Empty string = not set
|
||||||
.relay_privkey_override = {0}, // Empty string = not set
|
.relay_privkey_override = {0}, // Empty string = not set
|
||||||
.strict_port = 0 // 0 = allow port increment (default)
|
.strict_port = 0 // 0 = allow port increment (default)
|
||||||
};
|
};
|
||||||
@@ -1279,17 +1297,17 @@ int main(int argc, char* argv[]) {
|
|||||||
char port_msg[128];
|
char port_msg[128];
|
||||||
snprintf(port_msg, sizeof(port_msg), "Port override specified: %d", cli_options.port_override);
|
snprintf(port_msg, sizeof(port_msg), "Port override specified: %d", cli_options.port_override);
|
||||||
log_info(port_msg);
|
log_info(port_msg);
|
||||||
} else if (strcmp(argv[i], "-a") == 0 || strcmp(argv[i], "--admin-privkey") == 0) {
|
} else if (strcmp(argv[i], "-a") == 0 || strcmp(argv[i], "--admin-pubkey") == 0) {
|
||||||
// Admin private key override option
|
// Admin public key override option
|
||||||
if (i + 1 >= argc) {
|
if (i + 1 >= argc) {
|
||||||
log_error("Admin privkey option requires a value. Use --help for usage information.");
|
log_error("Admin pubkey option requires a value. Use --help for usage information.");
|
||||||
print_usage(argv[0]);
|
print_usage(argv[0]);
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Validate private key format (must be 64 hex characters)
|
// Validate public key format (must be 64 hex characters)
|
||||||
if (strlen(argv[i + 1]) != 64) {
|
if (strlen(argv[i + 1]) != 64) {
|
||||||
log_error("Invalid admin private key length. Must be exactly 64 hex characters.");
|
log_error("Invalid admin public key length. Must be exactly 64 hex characters.");
|
||||||
print_usage(argv[0]);
|
print_usage(argv[0]);
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
@@ -1298,17 +1316,17 @@ int main(int argc, char* argv[]) {
|
|||||||
for (int j = 0; j < 64; j++) {
|
for (int j = 0; j < 64; j++) {
|
||||||
char c = argv[i + 1][j];
|
char c = argv[i + 1][j];
|
||||||
if (!((c >= '0' && c <= '9') || (c >= 'a' && c <= 'f') || (c >= 'A' && c <= 'F'))) {
|
if (!((c >= '0' && c <= '9') || (c >= 'a' && c <= 'f') || (c >= 'A' && c <= 'F'))) {
|
||||||
log_error("Invalid admin private key format. Must contain only hex characters (0-9, a-f, A-F).");
|
log_error("Invalid admin public key format. Must contain only hex characters (0-9, a-f, A-F).");
|
||||||
print_usage(argv[0]);
|
print_usage(argv[0]);
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
strncpy(cli_options.admin_privkey_override, argv[i + 1], sizeof(cli_options.admin_privkey_override) - 1);
|
strncpy(cli_options.admin_pubkey_override, argv[i + 1], sizeof(cli_options.admin_pubkey_override) - 1);
|
||||||
cli_options.admin_privkey_override[sizeof(cli_options.admin_privkey_override) - 1] = '\0';
|
cli_options.admin_pubkey_override[sizeof(cli_options.admin_pubkey_override) - 1] = '\0';
|
||||||
i++; // Skip the key argument
|
i++; // Skip the key argument
|
||||||
|
|
||||||
log_info("Admin private key override specified");
|
log_info("Admin public key override specified");
|
||||||
} else if (strcmp(argv[i], "-r") == 0 || strcmp(argv[i], "--relay-privkey") == 0) {
|
} else if (strcmp(argv[i], "-r") == 0 || strcmp(argv[i], "--relay-privkey") == 0) {
|
||||||
// Relay private key override option
|
// Relay private key override option
|
||||||
if (i + 1 >= argc) {
|
if (i + 1 >= argc) {
|
||||||
@@ -1407,17 +1425,44 @@ int main(int argc, char* argv[]) {
|
|||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Systematically add pubkeys to config table
|
// Handle configuration setup after database is initialized
|
||||||
if (add_pubkeys_to_config_table() != 0) {
|
// Always populate defaults directly in config table (abandoning legacy event signing)
|
||||||
log_warning("Failed to add pubkeys to config table systematically");
|
log_info("Populating config table with defaults after database initialization");
|
||||||
} else {
|
|
||||||
log_success("Pubkeys added to config table systematically");
|
// Populate default config values in table
|
||||||
|
if (populate_default_config_values() != 0) {
|
||||||
|
log_error("Failed to populate default config values");
|
||||||
|
cleanup_configuration_system();
|
||||||
|
nostr_cleanup();
|
||||||
|
close_database();
|
||||||
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Retry storing the configuration event now that database is initialized
|
// Apply CLI overrides now that database is available
|
||||||
if (retry_store_initial_config_event() != 0) {
|
if (cli_options.port_override > 0) {
|
||||||
log_warning("Failed to store initial configuration event after database init");
|
char port_str[16];
|
||||||
|
snprintf(port_str, sizeof(port_str), "%d", cli_options.port_override);
|
||||||
|
if (update_config_in_table("relay_port", port_str) != 0) {
|
||||||
|
log_error("Failed to update relay port override in config table");
|
||||||
|
cleanup_configuration_system();
|
||||||
|
nostr_cleanup();
|
||||||
|
close_database();
|
||||||
|
return 1;
|
||||||
}
|
}
|
||||||
|
log_info("Applied port override from command line");
|
||||||
|
printf(" Port: %d (overriding default)\n", cli_options.port_override);
|
||||||
|
}
|
||||||
|
|
||||||
|
// Add pubkeys to config table
|
||||||
|
if (add_pubkeys_to_config_table() != 0) {
|
||||||
|
log_error("Failed to add pubkeys to config table");
|
||||||
|
cleanup_configuration_system();
|
||||||
|
nostr_cleanup();
|
||||||
|
close_database();
|
||||||
|
return 1;
|
||||||
|
}
|
||||||
|
|
||||||
|
log_success("Configuration populated directly in config table after database initialization");
|
||||||
|
|
||||||
// Now store the pubkeys in config table since database is available
|
// Now store the pubkeys in config table since database is available
|
||||||
const char* admin_pubkey = get_admin_pubkey_cached();
|
const char* admin_pubkey = get_admin_pubkey_cached();
|
||||||
@@ -1520,6 +1565,21 @@ int main(int argc, char* argv[]) {
|
|||||||
log_warning("No configuration event found in existing database");
|
log_warning("No configuration event found in existing database");
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Apply CLI overrides for existing relay (port override should work even for existing relays)
|
||||||
|
if (cli_options.port_override > 0) {
|
||||||
|
char port_str[16];
|
||||||
|
snprintf(port_str, sizeof(port_str), "%d", cli_options.port_override);
|
||||||
|
if (update_config_in_table("relay_port", port_str) != 0) {
|
||||||
|
log_error("Failed to update relay port override in config table for existing relay");
|
||||||
|
cleanup_configuration_system();
|
||||||
|
nostr_cleanup();
|
||||||
|
close_database();
|
||||||
|
return 1;
|
||||||
|
}
|
||||||
|
log_info("Applied port override from command line for existing relay");
|
||||||
|
printf(" Port: %d (overriding configured port)\n", cli_options.port_override);
|
||||||
|
}
|
||||||
|
|
||||||
// Free memory
|
// Free memory
|
||||||
free(relay_pubkey);
|
free(relay_pubkey);
|
||||||
for (int i = 0; existing_files[i]; i++) {
|
for (int i = 0; existing_files[i]; i++) {
|
||||||
|
|||||||
32
src/main.h
Normal file
32
src/main.h
Normal file
@@ -0,0 +1,32 @@
|
|||||||
|
/*
|
||||||
|
* C-Relay Main Header - Version and Metadata Information
|
||||||
|
*
|
||||||
|
* This header contains version information and relay metadata that is
|
||||||
|
* automatically updated by the build system (build_and_push.sh).
|
||||||
|
*
|
||||||
|
* The build_and_push.sh script updates VERSION and related macros when
|
||||||
|
* creating new releases.
|
||||||
|
*/
|
||||||
|
|
||||||
|
#ifndef MAIN_H
|
||||||
|
#define MAIN_H
|
||||||
|
|
||||||
|
// Version information (auto-updated by build_and_push.sh)
|
||||||
|
#define VERSION "v0.4.2"
|
||||||
|
#define VERSION_MAJOR 0
|
||||||
|
#define VERSION_MINOR 4
|
||||||
|
#define VERSION_PATCH 2
|
||||||
|
|
||||||
|
// Relay metadata (authoritative source for NIP-11 information)
|
||||||
|
#define RELAY_NAME "C-Relay"
|
||||||
|
#define RELAY_DESCRIPTION "High-performance C Nostr relay with SQLite storage"
|
||||||
|
#define RELAY_CONTACT ""
|
||||||
|
#define RELAY_SOFTWARE "https://git.laantungir.net/laantungir/c-relay.git"
|
||||||
|
#define RELAY_VERSION VERSION // Use the same version as the build
|
||||||
|
#define SUPPORTED_NIPS "1,2,4,9,11,12,13,15,16,20,22,33,40,42"
|
||||||
|
#define LANGUAGE_TAGS ""
|
||||||
|
#define RELAY_COUNTRIES ""
|
||||||
|
#define POSTING_POLICY ""
|
||||||
|
#define PAYMENTS_URL ""
|
||||||
|
|
||||||
|
#endif /* MAIN_H */
|
||||||
172
src/nip011.c
172
src/nip011.c
@@ -34,61 +34,194 @@ extern unified_config_cache_t g_unified_cache;
|
|||||||
/////////////////////////////////////////////////////////////////////////////////////////
|
/////////////////////////////////////////////////////////////////////////////////////////
|
||||||
/////////////////////////////////////////////////////////////////////////////////////////
|
/////////////////////////////////////////////////////////////////////////////////////////
|
||||||
|
|
||||||
|
// Helper function to parse comma-separated string into cJSON array
|
||||||
|
cJSON* parse_comma_separated_array(const char* csv_string) {
|
||||||
|
log_info("parse_comma_separated_array called");
|
||||||
|
if (!csv_string || strlen(csv_string) == 0) {
|
||||||
|
log_info("Empty or null csv_string, returning empty array");
|
||||||
|
return cJSON_CreateArray();
|
||||||
|
}
|
||||||
|
|
||||||
|
log_info("Creating cJSON array");
|
||||||
|
cJSON* array = cJSON_CreateArray();
|
||||||
|
if (!array) {
|
||||||
|
log_info("Failed to create cJSON array");
|
||||||
|
return NULL;
|
||||||
|
}
|
||||||
|
|
||||||
|
log_info("Duplicating csv_string");
|
||||||
|
char* csv_copy = strdup(csv_string);
|
||||||
|
if (!csv_copy) {
|
||||||
|
log_info("Failed to duplicate csv_string");
|
||||||
|
cJSON_Delete(array);
|
||||||
|
return NULL;
|
||||||
|
}
|
||||||
|
|
||||||
|
log_info("Starting token parsing");
|
||||||
|
char* token = strtok(csv_copy, ",");
|
||||||
|
while (token) {
|
||||||
|
log_info("Processing token");
|
||||||
|
// Trim whitespace
|
||||||
|
while (*token == ' ') token++;
|
||||||
|
char* end = token + strlen(token) - 1;
|
||||||
|
while (end > token && *end == ' ') *end-- = '\0';
|
||||||
|
|
||||||
|
if (strlen(token) > 0) {
|
||||||
|
log_info("Token has content, parsing");
|
||||||
|
// Try to parse as number first (for supported_nips)
|
||||||
|
char* endptr;
|
||||||
|
long num = strtol(token, &endptr, 10);
|
||||||
|
if (*endptr == '\0') {
|
||||||
|
log_info("Token is number, adding to array");
|
||||||
|
// It's a number
|
||||||
|
cJSON_AddItemToArray(array, cJSON_CreateNumber(num));
|
||||||
|
} else {
|
||||||
|
log_info("Token is string, adding to array");
|
||||||
|
// It's a string
|
||||||
|
cJSON_AddItemToArray(array, cJSON_CreateString(token));
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
log_info("Token is empty, skipping");
|
||||||
|
}
|
||||||
|
token = strtok(NULL, ",");
|
||||||
|
}
|
||||||
|
|
||||||
|
log_info("Freeing csv_copy");
|
||||||
|
free(csv_copy);
|
||||||
|
log_info("Returning parsed array");
|
||||||
|
return array;
|
||||||
|
}
|
||||||
|
|
||||||
// Initialize relay information using configuration system
|
// Initialize relay information using configuration system
|
||||||
void init_relay_info() {
|
void init_relay_info() {
|
||||||
|
log_info("Initializing relay information from configuration...");
|
||||||
|
|
||||||
// Get all config values first (without holding mutex to avoid deadlock)
|
// Get all config values first (without holding mutex to avoid deadlock)
|
||||||
|
// Note: These may be dynamically allocated strings that need to be freed
|
||||||
|
log_info("Fetching relay configuration values...");
|
||||||
const char* relay_name = get_config_value("relay_name");
|
const char* relay_name = get_config_value("relay_name");
|
||||||
|
log_info("relay_name fetched");
|
||||||
const char* relay_description = get_config_value("relay_description");
|
const char* relay_description = get_config_value("relay_description");
|
||||||
|
log_info("relay_description fetched");
|
||||||
const char* relay_software = get_config_value("relay_software");
|
const char* relay_software = get_config_value("relay_software");
|
||||||
|
log_info("relay_software fetched");
|
||||||
const char* relay_version = get_config_value("relay_version");
|
const char* relay_version = get_config_value("relay_version");
|
||||||
|
log_info("relay_version fetched");
|
||||||
const char* relay_contact = get_config_value("relay_contact");
|
const char* relay_contact = get_config_value("relay_contact");
|
||||||
|
log_info("relay_contact fetched");
|
||||||
const char* relay_pubkey = get_config_value("relay_pubkey");
|
const char* relay_pubkey = get_config_value("relay_pubkey");
|
||||||
|
log_info("relay_pubkey fetched");
|
||||||
|
const char* supported_nips_csv = get_config_value("supported_nips");
|
||||||
|
log_info("supported_nips fetched");
|
||||||
|
const char* language_tags_csv = get_config_value("language_tags");
|
||||||
|
log_info("language_tags fetched");
|
||||||
|
const char* relay_countries_csv = get_config_value("relay_countries");
|
||||||
|
log_info("relay_countries fetched");
|
||||||
|
const char* posting_policy = get_config_value("posting_policy");
|
||||||
|
log_info("posting_policy fetched");
|
||||||
|
const char* payments_url = get_config_value("payments_url");
|
||||||
|
log_info("payments_url fetched");
|
||||||
|
|
||||||
// Get config values for limitations
|
// Get config values for limitations
|
||||||
|
log_info("Fetching limitation configuration values...");
|
||||||
int max_message_length = get_config_int("max_message_length", 16384);
|
int max_message_length = get_config_int("max_message_length", 16384);
|
||||||
|
log_info("max_message_length fetched");
|
||||||
int max_subscriptions_per_client = get_config_int("max_subscriptions_per_client", 20);
|
int max_subscriptions_per_client = get_config_int("max_subscriptions_per_client", 20);
|
||||||
|
log_info("max_subscriptions_per_client fetched");
|
||||||
int max_limit = get_config_int("max_limit", 5000);
|
int max_limit = get_config_int("max_limit", 5000);
|
||||||
|
log_info("max_limit fetched");
|
||||||
int max_event_tags = get_config_int("max_event_tags", 100);
|
int max_event_tags = get_config_int("max_event_tags", 100);
|
||||||
|
log_info("max_event_tags fetched");
|
||||||
int max_content_length = get_config_int("max_content_length", 8196);
|
int max_content_length = get_config_int("max_content_length", 8196);
|
||||||
|
log_info("max_content_length fetched");
|
||||||
int default_limit = get_config_int("default_limit", 500);
|
int default_limit = get_config_int("default_limit", 500);
|
||||||
|
log_info("default_limit fetched");
|
||||||
int admin_enabled = get_config_bool("admin_enabled", 0);
|
int admin_enabled = get_config_bool("admin_enabled", 0);
|
||||||
|
log_info("admin_enabled fetched");
|
||||||
|
|
||||||
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
pthread_mutex_lock(&g_unified_cache.cache_lock);
|
||||||
|
|
||||||
// Update relay information fields
|
// Update relay information fields
|
||||||
|
log_info("Storing string values in cache...");
|
||||||
if (relay_name) {
|
if (relay_name) {
|
||||||
|
log_info("Storing relay_name");
|
||||||
strncpy(g_unified_cache.relay_info.name, relay_name, sizeof(g_unified_cache.relay_info.name) - 1);
|
strncpy(g_unified_cache.relay_info.name, relay_name, sizeof(g_unified_cache.relay_info.name) - 1);
|
||||||
|
free((char*)relay_name); // Free dynamically allocated string
|
||||||
|
log_info("relay_name stored and freed");
|
||||||
} else {
|
} else {
|
||||||
|
log_info("Using default relay_name");
|
||||||
strncpy(g_unified_cache.relay_info.name, "C Nostr Relay", sizeof(g_unified_cache.relay_info.name) - 1);
|
strncpy(g_unified_cache.relay_info.name, "C Nostr Relay", sizeof(g_unified_cache.relay_info.name) - 1);
|
||||||
}
|
}
|
||||||
|
|
||||||
if (relay_description) {
|
if (relay_description) {
|
||||||
|
log_info("Storing relay_description");
|
||||||
strncpy(g_unified_cache.relay_info.description, relay_description, sizeof(g_unified_cache.relay_info.description) - 1);
|
strncpy(g_unified_cache.relay_info.description, relay_description, sizeof(g_unified_cache.relay_info.description) - 1);
|
||||||
|
free((char*)relay_description); // Free dynamically allocated string
|
||||||
|
log_info("relay_description stored and freed");
|
||||||
} else {
|
} else {
|
||||||
|
log_info("Using default relay_description");
|
||||||
strncpy(g_unified_cache.relay_info.description, "A high-performance Nostr relay implemented in C with SQLite storage", sizeof(g_unified_cache.relay_info.description) - 1);
|
strncpy(g_unified_cache.relay_info.description, "A high-performance Nostr relay implemented in C with SQLite storage", sizeof(g_unified_cache.relay_info.description) - 1);
|
||||||
}
|
}
|
||||||
|
|
||||||
if (relay_software) {
|
if (relay_software) {
|
||||||
|
log_info("Storing relay_software");
|
||||||
strncpy(g_unified_cache.relay_info.software, relay_software, sizeof(g_unified_cache.relay_info.software) - 1);
|
strncpy(g_unified_cache.relay_info.software, relay_software, sizeof(g_unified_cache.relay_info.software) - 1);
|
||||||
|
free((char*)relay_software); // Free dynamically allocated string
|
||||||
|
log_info("relay_software stored and freed");
|
||||||
} else {
|
} else {
|
||||||
|
log_info("Using default relay_software");
|
||||||
strncpy(g_unified_cache.relay_info.software, "https://git.laantungir.net/laantungir/c-relay.git", sizeof(g_unified_cache.relay_info.software) - 1);
|
strncpy(g_unified_cache.relay_info.software, "https://git.laantungir.net/laantungir/c-relay.git", sizeof(g_unified_cache.relay_info.software) - 1);
|
||||||
}
|
}
|
||||||
|
|
||||||
if (relay_version) {
|
if (relay_version) {
|
||||||
|
log_info("Storing relay_version");
|
||||||
strncpy(g_unified_cache.relay_info.version, relay_version, sizeof(g_unified_cache.relay_info.version) - 1);
|
strncpy(g_unified_cache.relay_info.version, relay_version, sizeof(g_unified_cache.relay_info.version) - 1);
|
||||||
|
free((char*)relay_version); // Free dynamically allocated string
|
||||||
|
log_info("relay_version stored and freed");
|
||||||
} else {
|
} else {
|
||||||
|
log_info("Using default relay_version");
|
||||||
strncpy(g_unified_cache.relay_info.version, "0.2.0", sizeof(g_unified_cache.relay_info.version) - 1);
|
strncpy(g_unified_cache.relay_info.version, "0.2.0", sizeof(g_unified_cache.relay_info.version) - 1);
|
||||||
}
|
}
|
||||||
|
|
||||||
if (relay_contact) {
|
if (relay_contact) {
|
||||||
|
log_info("Storing relay_contact");
|
||||||
strncpy(g_unified_cache.relay_info.contact, relay_contact, sizeof(g_unified_cache.relay_info.contact) - 1);
|
strncpy(g_unified_cache.relay_info.contact, relay_contact, sizeof(g_unified_cache.relay_info.contact) - 1);
|
||||||
|
free((char*)relay_contact); // Free dynamically allocated string
|
||||||
|
log_info("relay_contact stored and freed");
|
||||||
}
|
}
|
||||||
|
|
||||||
if (relay_pubkey) {
|
if (relay_pubkey) {
|
||||||
|
log_info("Storing relay_pubkey");
|
||||||
strncpy(g_unified_cache.relay_info.pubkey, relay_pubkey, sizeof(g_unified_cache.relay_info.pubkey) - 1);
|
strncpy(g_unified_cache.relay_info.pubkey, relay_pubkey, sizeof(g_unified_cache.relay_info.pubkey) - 1);
|
||||||
|
free((char*)relay_pubkey); // Free dynamically allocated string
|
||||||
|
log_info("relay_pubkey stored and freed");
|
||||||
}
|
}
|
||||||
|
|
||||||
// Initialize supported NIPs array
|
if (posting_policy) {
|
||||||
|
log_info("Storing posting_policy");
|
||||||
|
strncpy(g_unified_cache.relay_info.posting_policy, posting_policy, sizeof(g_unified_cache.relay_info.posting_policy) - 1);
|
||||||
|
free((char*)posting_policy); // Free dynamically allocated string
|
||||||
|
log_info("posting_policy stored and freed");
|
||||||
|
}
|
||||||
|
|
||||||
|
if (payments_url) {
|
||||||
|
log_info("Storing payments_url");
|
||||||
|
strncpy(g_unified_cache.relay_info.payments_url, payments_url, sizeof(g_unified_cache.relay_info.payments_url) - 1);
|
||||||
|
free((char*)payments_url); // Free dynamically allocated string
|
||||||
|
log_info("payments_url stored and freed");
|
||||||
|
}
|
||||||
|
|
||||||
|
// Initialize supported NIPs array from config
|
||||||
|
log_info("Initializing supported_nips array");
|
||||||
|
if (supported_nips_csv) {
|
||||||
|
log_info("Parsing supported_nips from config");
|
||||||
|
g_unified_cache.relay_info.supported_nips = parse_comma_separated_array(supported_nips_csv);
|
||||||
|
log_info("supported_nips parsed successfully");
|
||||||
|
free((char*)supported_nips_csv); // Free dynamically allocated string
|
||||||
|
log_info("supported_nips_csv freed");
|
||||||
|
} else {
|
||||||
|
log_info("Using default supported_nips");
|
||||||
|
// Fallback to default supported NIPs
|
||||||
g_unified_cache.relay_info.supported_nips = cJSON_CreateArray();
|
g_unified_cache.relay_info.supported_nips = cJSON_CreateArray();
|
||||||
if (g_unified_cache.relay_info.supported_nips) {
|
if (g_unified_cache.relay_info.supported_nips) {
|
||||||
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(1)); // NIP-01: Basic protocol
|
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(1)); // NIP-01: Basic protocol
|
||||||
@@ -100,10 +233,14 @@ void init_relay_info() {
|
|||||||
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(40)); // NIP-40: Expiration Timestamp
|
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(40)); // NIP-40: Expiration Timestamp
|
||||||
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(42)); // NIP-42: Authentication
|
cJSON_AddItemToArray(g_unified_cache.relay_info.supported_nips, cJSON_CreateNumber(42)); // NIP-42: Authentication
|
||||||
}
|
}
|
||||||
|
log_info("Default supported_nips created");
|
||||||
|
}
|
||||||
|
|
||||||
// Initialize server limitations using configuration
|
// Initialize server limitations using configuration
|
||||||
|
log_info("Initializing server limitations");
|
||||||
g_unified_cache.relay_info.limitation = cJSON_CreateObject();
|
g_unified_cache.relay_info.limitation = cJSON_CreateObject();
|
||||||
if (g_unified_cache.relay_info.limitation) {
|
if (g_unified_cache.relay_info.limitation) {
|
||||||
|
log_info("Adding limitation fields");
|
||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_message_length", max_message_length);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_message_length", max_message_length);
|
||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_subscriptions", max_subscriptions_per_client);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_subscriptions", max_subscriptions_per_client);
|
||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_limit", max_limit);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "max_limit", max_limit);
|
||||||
@@ -117,29 +254,58 @@ void init_relay_info() {
|
|||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "created_at_lower_limit", 0);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "created_at_lower_limit", 0);
|
||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "created_at_upper_limit", 2147483647);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "created_at_upper_limit", 2147483647);
|
||||||
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "default_limit", default_limit);
|
cJSON_AddNumberToObject(g_unified_cache.relay_info.limitation, "default_limit", default_limit);
|
||||||
|
log_info("Limitation fields added");
|
||||||
|
} else {
|
||||||
|
log_info("Failed to create limitation object");
|
||||||
}
|
}
|
||||||
|
|
||||||
// Initialize empty retention policies (can be configured later)
|
// Initialize empty retention policies (can be configured later)
|
||||||
|
log_info("Initializing retention policies");
|
||||||
g_unified_cache.relay_info.retention = cJSON_CreateArray();
|
g_unified_cache.relay_info.retention = cJSON_CreateArray();
|
||||||
|
|
||||||
// Initialize language tags - set to global for now
|
// Initialize language tags from config
|
||||||
|
log_info("Initializing language_tags");
|
||||||
|
if (language_tags_csv) {
|
||||||
|
log_info("Parsing language_tags from config");
|
||||||
|
g_unified_cache.relay_info.language_tags = parse_comma_separated_array(language_tags_csv);
|
||||||
|
log_info("language_tags parsed successfully");
|
||||||
|
free((char*)language_tags_csv); // Free dynamically allocated string
|
||||||
|
log_info("language_tags_csv freed");
|
||||||
|
} else {
|
||||||
|
log_info("Using default language_tags");
|
||||||
|
// Fallback to global
|
||||||
g_unified_cache.relay_info.language_tags = cJSON_CreateArray();
|
g_unified_cache.relay_info.language_tags = cJSON_CreateArray();
|
||||||
if (g_unified_cache.relay_info.language_tags) {
|
if (g_unified_cache.relay_info.language_tags) {
|
||||||
cJSON_AddItemToArray(g_unified_cache.relay_info.language_tags, cJSON_CreateString("*"));
|
cJSON_AddItemToArray(g_unified_cache.relay_info.language_tags, cJSON_CreateString("*"));
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
// Initialize relay countries - set to global for now
|
// Initialize relay countries from config
|
||||||
|
log_info("Initializing relay_countries");
|
||||||
|
if (relay_countries_csv) {
|
||||||
|
log_info("Parsing relay_countries from config");
|
||||||
|
g_unified_cache.relay_info.relay_countries = parse_comma_separated_array(relay_countries_csv);
|
||||||
|
log_info("relay_countries parsed successfully");
|
||||||
|
free((char*)relay_countries_csv); // Free dynamically allocated string
|
||||||
|
log_info("relay_countries_csv freed");
|
||||||
|
} else {
|
||||||
|
log_info("Using default relay_countries");
|
||||||
|
// Fallback to global
|
||||||
g_unified_cache.relay_info.relay_countries = cJSON_CreateArray();
|
g_unified_cache.relay_info.relay_countries = cJSON_CreateArray();
|
||||||
if (g_unified_cache.relay_info.relay_countries) {
|
if (g_unified_cache.relay_info.relay_countries) {
|
||||||
cJSON_AddItemToArray(g_unified_cache.relay_info.relay_countries, cJSON_CreateString("*"));
|
cJSON_AddItemToArray(g_unified_cache.relay_info.relay_countries, cJSON_CreateString("*"));
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
// Initialize content tags as empty array
|
// Initialize content tags as empty array
|
||||||
|
log_info("Initializing tags");
|
||||||
g_unified_cache.relay_info.tags = cJSON_CreateArray();
|
g_unified_cache.relay_info.tags = cJSON_CreateArray();
|
||||||
|
|
||||||
// Initialize fees as empty object (no payment required by default)
|
// Initialize fees as empty object (no payment required by default)
|
||||||
|
log_info("Initializing fees");
|
||||||
g_unified_cache.relay_info.fees = cJSON_CreateObject();
|
g_unified_cache.relay_info.fees = cJSON_CreateObject();
|
||||||
|
|
||||||
|
log_info("Unlocking cache mutex");
|
||||||
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
pthread_mutex_unlock(&g_unified_cache.cache_lock);
|
||||||
|
|
||||||
log_success("Relay information initialized with default values");
|
log_success("Relay information initialized with default values");
|
||||||
|
|||||||
@@ -60,6 +60,7 @@ void init_pow_config() {
|
|||||||
g_unified_cache.pow_config.enabled = 0;
|
g_unified_cache.pow_config.enabled = 0;
|
||||||
log_info("PoW validation disabled via configuration");
|
log_info("PoW validation disabled via configuration");
|
||||||
}
|
}
|
||||||
|
free((char*)pow_mode); // Free dynamically allocated string
|
||||||
} else {
|
} else {
|
||||||
// Default to basic mode
|
// Default to basic mode
|
||||||
g_unified_cache.pow_config.validation_flags = NOSTR_POW_VALIDATE_BASIC;
|
g_unified_cache.pow_config.validation_flags = NOSTR_POW_VALIDATE_BASIC;
|
||||||
|
|||||||
@@ -214,9 +214,11 @@ int ginxsom_request_validator_init(const char *db_path, const char *app_name) {
|
|||||||
|
|
||||||
const char* nip42_timeout = get_config_value("nip42_challenge_timeout");
|
const char* nip42_timeout = get_config_value("nip42_challenge_timeout");
|
||||||
g_challenge_manager.timeout_seconds = nip42_timeout ? atoi(nip42_timeout) : 600;
|
g_challenge_manager.timeout_seconds = nip42_timeout ? atoi(nip42_timeout) : 600;
|
||||||
|
if (nip42_timeout) free((char*)nip42_timeout);
|
||||||
|
|
||||||
const char* nip42_tolerance = get_config_value("nip42_time_tolerance");
|
const char* nip42_tolerance = get_config_value("nip42_time_tolerance");
|
||||||
g_challenge_manager.time_tolerance_seconds = nip42_tolerance ? atoi(nip42_tolerance) : 300;
|
g_challenge_manager.time_tolerance_seconds = nip42_tolerance ? atoi(nip42_tolerance) : 300;
|
||||||
|
if (nip42_tolerance) free((char*)nip42_tolerance);
|
||||||
|
|
||||||
g_challenge_manager.last_cleanup = time(NULL);
|
g_challenge_manager.last_cleanup = time(NULL);
|
||||||
|
|
||||||
@@ -232,13 +234,20 @@ int ginxsom_request_validator_init(const char *db_path, const char *app_name) {
|
|||||||
int nostr_auth_rules_enabled(void) {
|
int nostr_auth_rules_enabled(void) {
|
||||||
// Use unified cache from config.c
|
// Use unified cache from config.c
|
||||||
const char* auth_enabled = get_config_value("auth_enabled");
|
const char* auth_enabled = get_config_value("auth_enabled");
|
||||||
|
int result = 0;
|
||||||
if (auth_enabled && strcmp(auth_enabled, "true") == 0) {
|
if (auth_enabled && strcmp(auth_enabled, "true") == 0) {
|
||||||
return 1;
|
result = 1;
|
||||||
}
|
}
|
||||||
|
if (auth_enabled) free((char*)auth_enabled);
|
||||||
|
|
||||||
// Also check legacy key
|
// Also check legacy key
|
||||||
const char* auth_rules_enabled = get_config_value("auth_rules_enabled");
|
const char* auth_rules_enabled = get_config_value("auth_rules_enabled");
|
||||||
return (auth_rules_enabled && strcmp(auth_rules_enabled, "true") == 0) ? 1 : 0;
|
if (auth_rules_enabled && strcmp(auth_rules_enabled, "true") == 0) {
|
||||||
|
result = 1;
|
||||||
|
}
|
||||||
|
if (auth_rules_enabled) free((char*)auth_rules_enabled);
|
||||||
|
|
||||||
|
return result;
|
||||||
}
|
}
|
||||||
|
|
||||||
///////////////////////////////////////////////////////////////////////////////////////
|
///////////////////////////////////////////////////////////////////////////////////////
|
||||||
@@ -344,9 +353,11 @@ int nostr_validate_unified_request(const char* json_string, size_t json_length)
|
|||||||
const char* nip42_enabled = get_config_value("nip42_auth_enabled");
|
const char* nip42_enabled = get_config_value("nip42_auth_enabled");
|
||||||
if (nip42_enabled && strcmp(nip42_enabled, "false") == 0) {
|
if (nip42_enabled && strcmp(nip42_enabled, "false") == 0) {
|
||||||
validator_debug_log("VALIDATOR_DEBUG: STEP 8 FAILED - NIP-42 is disabled\n");
|
validator_debug_log("VALIDATOR_DEBUG: STEP 8 FAILED - NIP-42 is disabled\n");
|
||||||
|
free((char*)nip42_enabled);
|
||||||
cJSON_Delete(event);
|
cJSON_Delete(event);
|
||||||
return NOSTR_ERROR_NIP42_DISABLED;
|
return NOSTR_ERROR_NIP42_DISABLED;
|
||||||
}
|
}
|
||||||
|
if (nip42_enabled) free((char*)nip42_enabled);
|
||||||
|
|
||||||
// TODO: Implement full NIP-42 challenge validation
|
// TODO: Implement full NIP-42 challenge validation
|
||||||
// For now, accept all valid NIP-42 events
|
// For now, accept all valid NIP-42 events
|
||||||
|
|||||||
@@ -310,8 +310,51 @@ else
|
|||||||
print_failure "Relay failed to start for network test"
|
print_failure "Relay failed to start for network test"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# TEST 10: Multiple Startup Attempts (Port Conflict)
|
# TEST 10: Port Override with Admin/Relay Key Overrides
|
||||||
print_test_header "Test 10: Port Conflict Handling"
|
print_test_header "Test 10: Port Override with -a/-r Flags"
|
||||||
|
|
||||||
|
cleanup_test_files
|
||||||
|
|
||||||
|
# Generate test keys (64 hex chars each)
|
||||||
|
TEST_ADMIN_PUBKEY="1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef"
|
||||||
|
TEST_RELAY_PRIVKEY="abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890"
|
||||||
|
|
||||||
|
print_info "Testing port override with -p 9999 -a $TEST_ADMIN_PUBKEY -r $TEST_RELAY_PRIVKEY"
|
||||||
|
|
||||||
|
# Start relay with port override and key overrides
|
||||||
|
timeout 15 $RELAY_BINARY -p 9999 -a $TEST_ADMIN_PUBKEY -r $TEST_RELAY_PRIVKEY > "test_port_override.log" 2>&1 &
|
||||||
|
relay_pid=$!
|
||||||
|
sleep 5
|
||||||
|
|
||||||
|
if kill -0 $relay_pid 2>/dev/null; then
|
||||||
|
# Check if relay bound to port 9999 (not default 8888)
|
||||||
|
if netstat -tln 2>/dev/null | grep -q ":9999"; then
|
||||||
|
print_success "Relay successfully bound to overridden port 9999"
|
||||||
|
else
|
||||||
|
print_failure "Relay not bound to overridden port 9999"
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Check that relay started successfully
|
||||||
|
if check_relay_startup "test_port_override.log"; then
|
||||||
|
print_success "Relay startup completed with overrides"
|
||||||
|
else
|
||||||
|
print_failure "Relay failed to complete startup with overrides"
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Check that admin keys were NOT generated (since -a was provided)
|
||||||
|
if ! check_admin_keys "test_port_override.log"; then
|
||||||
|
print_success "Admin keys not generated (correctly using provided -a key)"
|
||||||
|
else
|
||||||
|
print_failure "Admin keys generated despite -a override"
|
||||||
|
fi
|
||||||
|
|
||||||
|
stop_relay_test $relay_pid
|
||||||
|
else
|
||||||
|
print_failure "Relay failed to start with port/key overrides"
|
||||||
|
fi
|
||||||
|
|
||||||
|
# TEST 11: Multiple Startup Attempts (Port Conflict)
|
||||||
|
print_test_header "Test 11: Port Conflict Handling"
|
||||||
|
|
||||||
relay_pid1=$(start_relay_test "port_conflict_1" 10)
|
relay_pid1=$(start_relay_test "port_conflict_1" 10)
|
||||||
sleep 2
|
sleep 2
|
||||||
|
|||||||
@@ -166,6 +166,81 @@ add_to_blacklist() {
|
|||||||
sleep 3
|
sleep 3
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# Send admin command to add user to whitelist
|
||||||
|
add_to_whitelist() {
|
||||||
|
local pubkey="$1"
|
||||||
|
log_info "Adding pubkey to whitelist: ${pubkey:0:16}..."
|
||||||
|
|
||||||
|
# Create the admin command
|
||||||
|
COMMAND="[\"whitelist\", \"pubkey\", \"$pubkey\"]"
|
||||||
|
|
||||||
|
# Encrypt the command using NIP-44
|
||||||
|
ENCRYPTED_COMMAND=$(nak encrypt "$COMMAND" \
|
||||||
|
--sec "$ADMIN_PRIVKEY" \
|
||||||
|
--recipient-pubkey "$RELAY_PUBKEY")
|
||||||
|
|
||||||
|
if [ -z "$ENCRYPTED_COMMAND" ]; then
|
||||||
|
log_error "Failed to encrypt admin command"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Create admin event
|
||||||
|
ADMIN_EVENT=$(nak event \
|
||||||
|
--kind 23456 \
|
||||||
|
--content "$ENCRYPTED_COMMAND" \
|
||||||
|
--sec "$ADMIN_PRIVKEY" \
|
||||||
|
--tag "p=$RELAY_PUBKEY")
|
||||||
|
|
||||||
|
# Post admin event
|
||||||
|
ADMIN_RESULT=$(echo "$ADMIN_EVENT" | nak event "$RELAY_URL")
|
||||||
|
|
||||||
|
if echo "$ADMIN_RESULT" | grep -q "error\|failed\|denied"; then
|
||||||
|
log_error "Failed to send admin command: $ADMIN_RESULT"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
log_success "Admin command sent successfully - user added to whitelist"
|
||||||
|
# Wait for the relay to process the admin command
|
||||||
|
sleep 3
|
||||||
|
}
|
||||||
|
|
||||||
|
# Clear all auth rules
|
||||||
|
clear_auth_rules() {
|
||||||
|
log_info "Clearing all auth rules..."
|
||||||
|
|
||||||
|
# Create the admin command
|
||||||
|
COMMAND="[\"system_command\", \"clear_all_auth_rules\"]"
|
||||||
|
|
||||||
|
# Encrypt the command using NIP-44
|
||||||
|
ENCRYPTED_COMMAND=$(nak encrypt "$COMMAND" \
|
||||||
|
--sec "$ADMIN_PRIVKEY" \
|
||||||
|
--recipient-pubkey "$RELAY_PUBKEY")
|
||||||
|
|
||||||
|
if [ -z "$ENCRYPTED_COMMAND" ]; then
|
||||||
|
log_error "Failed to encrypt admin command"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Create admin event
|
||||||
|
ADMIN_EVENT=$(nak event \
|
||||||
|
--kind 23456 \
|
||||||
|
--content "$ENCRYPTED_COMMAND" \
|
||||||
|
--sec "$ADMIN_PRIVKEY" \
|
||||||
|
--tag "p=$RELAY_PUBKEY")
|
||||||
|
|
||||||
|
# Post admin event
|
||||||
|
ADMIN_RESULT=$(echo "$ADMIN_EVENT" | nak event "$RELAY_URL")
|
||||||
|
|
||||||
|
if echo "$ADMIN_RESULT" | grep -q "error\|failed\|denied"; then
|
||||||
|
log_error "Failed to send admin command: $ADMIN_RESULT"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
log_success "Admin command sent successfully - all auth rules cleared"
|
||||||
|
# Wait for the relay to process the admin command
|
||||||
|
sleep 3
|
||||||
|
}
|
||||||
|
|
||||||
# Test 2: Try to post after blacklisting
|
# Test 2: Try to post after blacklisting
|
||||||
test_blacklist_post() {
|
test_blacklist_post() {
|
||||||
log_info "=== TEST 2: Attempt to post event after blacklisting ==="
|
log_info "=== TEST 2: Attempt to post event after blacklisting ==="
|
||||||
@@ -199,6 +274,92 @@ test_blacklist_post() {
|
|||||||
fi
|
fi
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# Test 3: Test whitelist functionality
|
||||||
|
test_whitelist_functionality() {
|
||||||
|
log_info "=== TEST 3: Test whitelist functionality ==="
|
||||||
|
|
||||||
|
# Generate a second test keypair for whitelist testing
|
||||||
|
log_info "Generating second test keypair for whitelist testing..."
|
||||||
|
WHITELIST_PRIVKEY=$(nak key generate 2>/dev/null)
|
||||||
|
WHITELIST_PUBKEY=$(nak key public "$WHITELIST_PRIVKEY" 2>/dev/null)
|
||||||
|
|
||||||
|
if [ -z "$WHITELIST_PUBKEY" ]; then
|
||||||
|
log_error "Failed to generate whitelist test keypair"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
log_success "Generated whitelist test keypair: ${WHITELIST_PUBKEY:0:16}..."
|
||||||
|
|
||||||
|
# Clear all auth rules first
|
||||||
|
if ! clear_auth_rules; then
|
||||||
|
log_error "Failed to clear auth rules for whitelist test"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Add the whitelist user to whitelist
|
||||||
|
if ! add_to_whitelist "$WHITELIST_PUBKEY"; then
|
||||||
|
log_error "Failed to add whitelist user"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Test 3a: Original test user should be blocked (not whitelisted)
|
||||||
|
log_info "Testing that non-whitelisted user is blocked..."
|
||||||
|
local timestamp=$(date +%s)
|
||||||
|
local content="Non-whitelisted test event at timestamp $timestamp"
|
||||||
|
|
||||||
|
NON_WHITELIST_EVENT=$(nak event \
|
||||||
|
--kind 1 \
|
||||||
|
--content "$content" \
|
||||||
|
--sec "$TEST_PRIVKEY" \
|
||||||
|
--tag 't=whitelist-test')
|
||||||
|
|
||||||
|
POST_RESULT=$(echo "$NON_WHITELIST_EVENT" | nak event "$RELAY_URL" 2>&1)
|
||||||
|
|
||||||
|
if echo "$POST_RESULT" | grep -q "error\|failed\|denied\|blocked"; then
|
||||||
|
log_success "Non-whitelisted user correctly blocked"
|
||||||
|
else
|
||||||
|
log_error "Non-whitelisted user was not blocked - whitelist may not be working"
|
||||||
|
log_error "Post result: $POST_RESULT"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Test 3b: Whitelisted user should be allowed
|
||||||
|
log_info "Testing that whitelisted user can post..."
|
||||||
|
content="Whitelisted test event at timestamp $timestamp"
|
||||||
|
|
||||||
|
WHITELIST_EVENT=$(nak event \
|
||||||
|
--kind 1 \
|
||||||
|
--content "$content" \
|
||||||
|
--sec "$WHITELIST_PRIVKEY" \
|
||||||
|
--tag 't=whitelist-test')
|
||||||
|
|
||||||
|
POST_RESULT=$(echo "$WHITELIST_EVENT" | nak event "$RELAY_URL" 2>&1)
|
||||||
|
|
||||||
|
if echo "$POST_RESULT" | grep -q "error\|failed\|denied\|blocked"; then
|
||||||
|
log_error "Whitelisted user was blocked - whitelist not working correctly"
|
||||||
|
log_error "Post result: $POST_RESULT"
|
||||||
|
return 1
|
||||||
|
else
|
||||||
|
log_success "Whitelisted user can post successfully"
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Verify the whitelisted event can be retrieved
|
||||||
|
WHITELIST_EVENT_ID=$(echo "$WHITELIST_EVENT" | jq -r '.id')
|
||||||
|
sleep 2
|
||||||
|
|
||||||
|
RETRIEVE_RESULT=$(nak req \
|
||||||
|
--id "$WHITELIST_EVENT_ID" \
|
||||||
|
"$RELAY_URL")
|
||||||
|
|
||||||
|
if echo "$RETRIEVE_RESULT" | grep -q "$WHITELIST_EVENT_ID"; then
|
||||||
|
log_success "Whitelisted event successfully retrieved"
|
||||||
|
return 0
|
||||||
|
else
|
||||||
|
log_error "Failed to retrieve whitelisted event"
|
||||||
|
return 1
|
||||||
|
fi
|
||||||
|
}
|
||||||
|
|
||||||
# Main test function
|
# Main test function
|
||||||
main() {
|
main() {
|
||||||
log_info "Starting C-Relay Whitelist/Blacklist Test"
|
log_info "Starting C-Relay Whitelist/Blacklist Test"
|
||||||
@@ -237,6 +398,14 @@ main() {
|
|||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
# Test 3: Test whitelist functionality
|
||||||
|
if test_whitelist_functionality; then
|
||||||
|
log_success "TEST 3 PASSED: Whitelist functionality works correctly"
|
||||||
|
else
|
||||||
|
log_error "TEST 3 FAILED: Whitelist functionality not working"
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
|
||||||
log_success "All tests passed! Whitelist/blacklist functionality is working correctly."
|
log_success "All tests passed! Whitelist/blacklist functionality is working correctly."
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user