PyPI - neuronum - Versions diffs - 9.0.0__py3-none-any.whl → 10.0.0__py3-none-any.whl - Mend

neuronum 9.0.0py3-none-any.whl → 10.0.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of neuronum might be problematic. Click here for more details.

Files changed (11) hide show

cli/main.py +229 -945
neuronum/__init__.py +1 -1
neuronum/neuronum.py +671 -290
neuronum-10.0.0.dist-info/METADATA +157 -0
neuronum-10.0.0.dist-info/RECORD +10 -0
neuronum-9.0.0.dist-info/METADATA +0 -124
neuronum-9.0.0.dist-info/RECORD +0 -10
{neuronum-9.0.0.dist-info → neuronum-10.0.0.dist-info}/WHEEL +0 -0
{neuronum-9.0.0.dist-info → neuronum-10.0.0.dist-info}/entry_points.txt +0 -0
{neuronum-9.0.0.dist-info → neuronum-10.0.0.dist-info}/licenses/LICENSE.md +0 -0
{neuronum-9.0.0.dist-info → neuronum-10.0.0.dist-info}/top_level.txt +0 -0

neuronum/neuronum.py CHANGED Viewed

@@ -1,364 +1,745 @@
 import aiohttp
-from typing import Optional, AsyncGenerator, Union
+import aiofiles
+from typing import AsyncGenerator, Optional, Dict, Any, List
 import websockets
 import json
 import asyncio
 import base64
-import os
 import ssl
+import os
+import time
+import logging
 from pathlib import Path
-from websockets.exceptions import ConnectionClosed
+from dataclasses import dataclass
+from websockets.exceptions import ConnectionClosed, WebSocketException
 from cryptography.hazmat.primitives.asymmetric import ec
 from cryptography.hazmat.primitives import serialization, hashes
 from cryptography.hazmat.primitives.ciphers.aead import AESGCM
 from cryptography.hazmat.primitives.kdf.hkdf import HKDF
 from cryptography.hazmat.backends import default_backend
+from abc import ABC, abstractmethod
-class Node:
-    def __init__(self, id: str, private_key: str, public_key: str):
-        self.node_id = id
-        self.private_key_path = private_key
-        self.public_key_path = public_key
-        self.queue = asyncio.Queue()
-        self.env = self._load_env()
-        self.host = self.env.get("HOST", "")
-        self.network = self.env.get("NETWORK", "")
-        self.synapse = self.env.get("SYNAPSE", "")
-        self.password = self.env.get("PASSWORD", "")
-        self._private_key = self._load_private_key()
-        self._public_key = self._load_public_key()
+# Configure logging
+logging.basicConfig(
+    level=logging.INFO,
+    format='%(asctime)s - %(name)s - %(levelname)s - %(message)s'
+)
+logger = logging.getLogger(__name__)
-    def to_dict(self) -> dict:
-        return {
-            "host": self.host,
-            "password": self.password,
-            "synapse": self.synapse
-        }
+# Custom Exceptions
+class NeuronumError(Exception):
+    """Base exception for Neuronum errors"""
+    pass
-    def _load_env(self) -> dict:
-        credentials_folder_path = Path.home() / ".neuronum"
-        env_path = credentials_folder_path / ".env"
-        env_data = {}
-        try:
-            with open(env_path, "r") as f:
-                for line in f:
-                    key, value = line.strip().split("=")
-                    env_data[key] = value
-            return env_data
-        except FileNotFoundError:
-            print(f"Cell credentials (.env) not found at {env_path}")
-            return {}
+class AuthenticationError(NeuronumError):
+    """Raised when authentication fails"""
+    pass
-    def _load_private_key(self):
-        try:
-            with open(self.private_key_path, "rb") as f:
-                return serialization.load_pem_private_key(f.read(), password=None, backend=default_backend())
-        except FileNotFoundError:
-            print(f"Private key file not found at {self.private_key_path}.")
-            return None
+class EncryptionError(NeuronumError):
+    """Raised when encryption/decryption fails"""
+    pass
-    def _load_public_key(self):
-        try:
-            with open(self.public_key_path, "rb") as f:
-                return serialization.load_pem_public_key(f.read(), backend=default_backend())
-        except FileNotFoundError:
-            print(f"Public key file not found. Deriving from private key.")
-            return self._private_key.public_key() if self._private_key else None
+class CellNotFoundError(NeuronumError):
+    """Raised when a cell cannot be found"""
+    pass
+class NetworkError(NeuronumError):
+    """Raised when network operations fail"""
+    pass
-    def get_public_key_jwk(self):
-        public_key = self._load_public_key()
-        if not public_key:
-            print("Public key not loaded. Cannot generate JWK.")
-            return None
-        public_numbers = public_key.public_numbers()
-        x_bytes = public_numbers.x.to_bytes((public_numbers.x.bit_length() + 7) // 8, 'big')
-        y_bytes = public_numbers.y.to_bytes((public_numbers.y.bit_length() + 7) // 8, 'big')
-        return {
-            "kty": "EC",
-            "crv": "P-256",
-            "x": base64.urlsafe_b64encode(x_bytes).rstrip(b'=').decode('utf-8'),
-            "y": base64.urlsafe_b64encode(y_bytes).rstrip(b'=').decode('utf-8')
-        }
+# Configuration
+@dataclass
+class ClientConfig:
+    """Client configuration settings"""
+    network: str = "neuronum.net"
+    cache_expiry: int = 3600
+    credentials_path: Path = Path.home() / ".neuronum"
+    timeout: int = 30
+    max_retries: int = 3
+    retry_delay: float = 1.0
+    max_retry_delay: float = 60.0
-    def _decrypt_with_ecdh_aesgcm(self, ephemeral_public_key_bytes, nonce, ciphertext):
+class CryptoManager:
+    """Handles all cryptographic operations"""
+    def __init__(self, private_key: Optional[ec.EllipticCurvePrivateKey] = None):
+        self._private_key = private_key
+        self._public_key = private_key.public_key() if private_key else None
+    def sign_message(self, message: bytes) -> str:
+        """Sign a message with the private key"""
+        if not self._private_key:
+            raise EncryptionError("Private key not available for signing")
+        try:
+            signature = self._private_key.sign(message, ec.ECDSA(hashes.SHA256()))
+            return base64.b64encode(signature).decode()
+        except Exception as e:
+            logger.error("Failed to sign message", exc_info=True)
+            raise EncryptionError(f"Message signing failed: {e}")
+    def get_public_key_pem(self) -> str:
+        """Get public key in PEM format"""
+        if not self._public_key:
+            raise EncryptionError("Public key not available")
+        pem_bytes = self._public_key.public_bytes(
+            encoding=serialization.Encoding.PEM,
+            format=serialization.PublicFormat.SubjectPublicKeyInfo
+        )
+        return pem_bytes.decode('utf-8')
+    def load_public_key_from_pem(self, pem_string: str) -> ec.EllipticCurvePublicKey:
+        """Load a public key from PEM format"""
+        try:
+            return serialization.load_pem_public_key(
+                pem_string.encode(),
+                backend=default_backend()
+            )
+        except Exception as e:
+            logger.error("Failed to load public key from PEM", exc_info=True)
+            raise EncryptionError(f"Failed to load public key: {e}")
+    @staticmethod
+    def safe_b64decode(data: str) -> bytes:
+        """Safely decode base64 with proper padding"""
+        padding = 4 - (len(data) % 4)
+        if padding != 4:
+            data += '=' * padding
+        return base64.urlsafe_b64decode(data)
+    def encrypt_with_ecdh_aesgcm(
+        self,
+        public_key: ec.EllipticCurvePublicKey,
+        plaintext_dict: Dict[str, Any]
+    ) -> Dict[str, str]:
+        """Encrypt data using ECDH + AES-GCM"""
+        try:
+            ephemeral_private = ec.generate_private_key(ec.SECP256R1())
+            shared_secret = ephemeral_private.exchange(ec.ECDH(), public_key)
+            derived_key = HKDF(
+                algorithm=hashes.SHA256(),
+                length=32,
+                salt=None,
+                info=b'handshake data'
+            ).derive(shared_secret)
+            aesgcm = AESGCM(derived_key)
+            nonce = os.urandom(12)
+            plaintext_bytes = json.dumps(plaintext_dict).encode()
+            ciphertext = aesgcm.encrypt(nonce, plaintext_bytes, None)
+            ephemeral_public_bytes = ephemeral_private.public_key().public_bytes(
+                serialization.Encoding.X962,
+                serialization.PublicFormat.UncompressedPoint
+            )
+            return {
+                'ciphertext': base64.urlsafe_b64encode(ciphertext).rstrip(b'=').decode(),
+                'nonce': base64.urlsafe_b64encode(nonce).rstrip(b'=').decode(),
+                'ephemeralPublicKey': base64.urlsafe_b64encode(ephemeral_public_bytes).rstrip(b'=').decode()
+            }
+        except Exception as e:
+            logger.error("Encryption failed", exc_info=True)
+            raise EncryptionError(f"Encryption failed: {e}")
+    def decrypt_with_ecdh_aesgcm(
+        self,
+        ephemeral_public_key_bytes: bytes,
+        nonce: bytes,
+        ciphertext: bytes
+    ) -> Dict[str, Any]:
+        """Decrypt data using ECDH + AES-GCM"""
+        if not self._private_key:
+            raise EncryptionError("Private key not available for decryption")
         try:
             ephemeral_public_key = ec.EllipticCurvePublicKey.from_encoded_point(
                 ec.SECP256R1(), ephemeral_public_key_bytes
             )
             shared_secret = self._private_key.exchange(ec.ECDH(), ephemeral_public_key)
-            derived_key = HKDF(algorithm=hashes.SHA256(), length=32, salt=None, info=b'handshake data').derive(shared_secret)
+            derived_key = HKDF(
+                algorithm=hashes.SHA256(),
+                length=32,
+                salt=None,
+                info=b'handshake data'
+            ).derive(shared_secret)
             aesgcm = AESGCM(derived_key)
             plaintext_bytes = aesgcm.decrypt(nonce, ciphertext, None)
             return json.loads(plaintext_bytes.decode())
         except Exception as e:
-            print(f"Decryption failed: {e}")
-            return None
-    def _encrypt_with_ecdh_aesgcm(self, public_key, plaintext_dict):
-        ephemeral_private = ec.generate_private_key(ec.SECP256R1())
-        shared_secret = ephemeral_private.exchange(ec.ECDH(), public_key)
-        derived_key = HKDF(algorithm=hashes.SHA256(), length=32, salt=None, info=b'handshake data').derive(shared_secret)
-        aesgcm = AESGCM(derived_key)
-        nonce = os.urandom(12)
-        plaintext_bytes = json.dumps(plaintext_dict).encode()
-        ciphertext = aesgcm.encrypt(nonce, plaintext_bytes, None)
-        ephemeral_public_bytes = ephemeral_private.public_key().public_bytes(
-            serialization.Encoding.X962, serialization.PublicFormat.UncompressedPoint
-        )
-        return {
-            'ciphertext': base64.urlsafe_b64encode(ciphertext).rstrip(b'=').decode(),
-            'nonce': base64.urlsafe_b64encode(nonce).rstrip(b'=').decode(),
-            'ephemeralPublicKey': base64.urlsafe_b64encode(ephemeral_public_bytes).rstrip(b'=').decode()
-        }
+            logger.error("Decryption failed", exc_info=True)
+            raise EncryptionError(f"Decryption failed: {e}")
-    def _load_public_key_from_jwk(self, jwk):
+class CacheManager:
+    """Manages cell cache with async file operations"""
+    def __init__(self, config: ClientConfig):
+        self.config = config
+        self.cache_file = config.credentials_path / "cells.json"
+        self._lock = asyncio.Lock()
+        self._memory_cache: Optional[List[Dict[str, Any]]] = None
+        self._cache_time: Optional[float] = None
+    async def get_cells(self) -> List[Dict[str, Any]]:
+        """Get cached cells if valid, otherwise fetch new"""
+        async with self._lock:
+            # Check memory cache first
+            if self._is_memory_cache_valid():
+                logger.debug("Using in-memory cache")
+                return self._memory_cache
+            # Check file cache
+            if await self._is_file_cache_valid():
+                logger.debug("Using file cache")
+                cells = await self._load_from_file()
+                self._update_memory_cache(cells)
+                return cells
+            return None
+    async def update_cells(self, cells: List[Dict[str, Any]]) -> None:
+        """Update cache with new cell data"""
+        async with self._lock:
+            self._update_memory_cache(cells)
+            await self._save_to_file(cells)
+    def _is_memory_cache_valid(self) -> bool:
+        """Check if memory cache is still valid"""
+        if not self._memory_cache or not self._cache_time:
+            return False
+        return (time.time() - self._cache_time) < self.config.cache_expiry
+    async def _is_file_cache_valid(self) -> bool:
+        """Check if file cache is still valid"""
+        if not self.cache_file.exists():
+            return False
         try:
-            x_bytes = base64.urlsafe_b64decode(jwk['x'] + '==')
-            y_bytes = base64.urlsafe_b64decode(jwk['y'] + '==')
-            public_numbers = ec.EllipticCurvePublicNumbers(
-                int.from_bytes(x_bytes, 'big'),
-                int.from_bytes(y_bytes, 'big'),
-                ec.SECP256R1()
-            )
-            return public_numbers.public_key(default_backend())
+            file_mtime = os.path.getmtime(self.cache_file)
+            return (time.time() - file_mtime) < self.config.cache_expiry
+        except OSError:
+            return False
+    async def _load_from_file(self) -> List[Dict[str, Any]]:
+        """Load cells from cache file"""
+        try:
+            async with aiofiles.open(self.cache_file, 'r') as f:
+                content = await f.read()
+                return json.loads(content)
+        except (FileNotFoundError, json.JSONDecodeError) as e:
+            logger.warning(f"Failed to load cache file: {e}")
+            return []
+    async def _save_to_file(self, cells: List[Dict[str, Any]]) -> None:
+        """Save cells to cache file"""
+        try:
+            self.config.credentials_path.mkdir(parents=True, exist_ok=True)
+            async with aiofiles.open(self.cache_file, 'w') as f:
+                await f.write(json.dumps(cells, indent=4))
+            logger.debug("Cache file updated")
         except Exception as e:
-            print(f"Error loading public key from JWK: {e}")
-            return None
+            logger.error(f"Failed to save cache file: {e}")
+    def _update_memory_cache(self, cells: List[Dict[str, Any]]) -> None:
+        """Update in-memory cache"""
+        self._memory_cache = cells
+        self._cache_time = time.time()
-    def _load_public_key_from_pem(self, pem_string: str):
+class NetworkClient:
+    """Handles all network operations with retry logic"""
+    def __init__(self, config: ClientConfig):
+        self.config = config
+        self._session: Optional[aiohttp.ClientSession] = None
+    async def __aenter__(self):
+        self._session = aiohttp.ClientSession(
+            timeout=aiohttp.ClientTimeout(total=self.config.timeout)
+        )
+        return self
+    async def __aexit__(self, *args):
+        if self._session:
+            await self._session.close()
+    async def post_request(
+        self,
+        url: str,
+        payload: Dict[str, Any],
+        retry_count: int = 0
+    ) -> Optional[Dict[str, Any]]:
+        """Make POST request with retry logic"""
+        if not self._session:
+            self._session = aiohttp.ClientSession(
+                timeout=aiohttp.ClientTimeout(total=self.config.timeout)
+            )
         try:
-            corrected_pem = pem_string.replace("-----BEGINPUBLICKEY-----", "-----BEGIN PUBLIC KEY-----") \
-                                      .replace("-----ENDPUBLICKEY-----", "-----END PUBLIC KEY-----")
-            public_key = serialization.load_pem_public_key(corrected_pem.encode(), backend=default_backend())
-            return public_key
+            async with self._session.post(url, json=payload) as response:
+                response.raise_for_status()
+                return await response.json()
+        except aiohttp.ClientResponseError as e:
+            logger.error(f"HTTP error {e.status} for URL: {url}")
+            if retry_count < self.config.max_retries and e.status >= 500:
+                return await self._retry_request(url, payload, retry_count)
+            raise NetworkError(f"HTTP {e.status} error")
+        except aiohttp.ClientError as e:
+            logger.error(f"Client error for URL {url}: {e}")
+            if retry_count < self.config.max_retries:
+                return await self._retry_request(url, payload, retry_count)
+            raise NetworkError(f"Client error: {e}")
         except Exception as e:
-            print(f"Error loading public key from PEM: {e}")
-            return None
-    async def _get_target_node_public_key(self, node_id: str):
-        nodes = await self.list_nodes()
-        for node in nodes:
-            app_metadata = node.get('config', {}).get('app_metadata', {})
-            if app_metadata.get('node_id') == node_id:
-                pem = node.get('config', {}).get('public_key')
-                if not pem:
-                    print(f"Public key missing for node: {node_id}")
-                    return None
-                public_key = self._load_public_key_from_pem(pem)
-                if not public_key:
-                    return None
-                return public_key
-        print(f"Target node not found: {node_id}")
-        return None
-    async def _post_request(self, url, payload):
-        async with aiohttp.ClientSession() as session:
-            try:
-                async with session.post(url, json=payload) as response:
-                    response.raise_for_status()
-                    return await response.json()
-            except aiohttp.ClientError as e:
-                print(f"HTTP Error: {e.status}, URL: {url}")
-            except Exception as e:
-                print(f"Unexpected error: {e}")
-        return None
+            logger.error(f"Unexpected error for URL {url}: {e}")
+            raise NetworkError(f"Unexpected error: {e}")
+    async def _retry_request(
+        self,
+        url: str,
+        payload: Dict[str, Any],
+        retry_count: int
+    ) -> Optional[Dict[str, Any]]:
+        """Retry request with exponential backoff"""
+        delay = min(
+            self.config.retry_delay * (2 ** retry_count),
+            self.config.max_retry_delay
+        )
+        logger.info(f"Retrying request in {delay}s (attempt {retry_count + 1})")
+        await asyncio.sleep(delay)
+        return await self.post_request(url, payload, retry_count + 1)
-    async def list_nodes(self):
-        full_url = f"https://{self.network}/api/list_nodes"
+class BaseClient(ABC):
+    """Base client with common functionality"""
+    def __init__(self, config: Optional[ClientConfig] = None):
+        self.config = config or ClientConfig()
+        self.env: Dict[str, str] = {}
+        self._crypto: Optional[CryptoManager] = None
+        self._cache_manager = CacheManager(self.config)
+        self._network_client = NetworkClient(self.config)
+        self.host = ""
+        self.network = self.config.network
+    @abstractmethod
+    def _load_private_key(self) -> Optional[ec.EllipticCurvePrivateKey]:
+        """Load private key - to be implemented by subclasses"""
+        pass
+    def _init_crypto(self, private_key: Optional[ec.EllipticCurvePrivateKey]) -> None:
+        """Initialize crypto manager with private key"""
+        self._crypto = CryptoManager(private_key)
+    def to_dict(self) -> Dict[str, str]:
+        """Create authentication payload"""
+        if not self._crypto:
+            logger.warning("Crypto manager not initialized")
+            timestamp = str(int(time.time()))
+            return {
+                "host": self.host,
+                "signed_message": "",
+                "message": f"host={self.host};timestamp={timestamp}"
+            }
+        timestamp = str(int(time.time()))
+        message = f"host={self.host};timestamp={timestamp}"
+        try:
+            signed_message = self._crypto.sign_message(message.encode())
+        except EncryptionError:
+            logger.error("Failed to sign authentication message")
+            signed_message = ""
+        return {
+            "host": self.host,
+            "signed_message": signed_message,
+            "message": message
+        }
+    async def _get_target_cell_public_key(self, cell_id: str) -> str:
+        """Get public key for target cell"""
+        # Try cached cells first
+        cells = await self.list_cells(update=False)
+        for cell in cells:
+            if cell.get('cell_id') == cell_id:
+                public_key = cell.get('public_key', {})
+                if public_key:
+                    return public_key
+        # Refresh cache and try again
+        logger.info(f"Cell {cell_id} not in cache, refreshing")
+        cells = await self.list_cells(update=True)
+        for cell in cells:
+            if cell.get('cell_id') == cell_id:
+                public_key = cell.get('public_key', {})
+                if public_key:
+                    return public_key
+        raise CellNotFoundError(f"Cell not found: {cell_id}")
+    async def list_cells(self, update: bool = False) -> List[Dict[str, Any]]:
+        """
+        List all available cells.
+        Args:
+            update: Force cache refresh if True
+        Returns:
+            List of cell information dictionaries
+        """
+        if not update:
+            cached_cells = await self._cache_manager.get_cells()
+            if cached_cells is not None:
+                return cached_cells
+        # Fetch from API
+        full_url = f"https://{self.network}/api/list_cells"
         payload = {"cell": self.to_dict()}
-        data = await self._post_request(full_url, payload)
-        return data.get("Nodes", []) if data else []
-    async def tx_response(self, transmitter_id: str, data: dict, client_public_key_str: Optional[Union[str, dict]] = None, encrypted: Optional[bool] = True):
+        try:
+            data = await self._network_client.post_request(full_url, payload)
+            cells = data.get("Cells", []) if data else []
+            await self._cache_manager.update_cells(cells)
+            return cells
+        except NetworkError as e:
+            logger.error(f"Failed to fetch cells: {e}")
+            return []
+    async def tx_response(
+        self,
+        transmitter_id: str,
+        data: Dict[str, Any],
+        client_public_key_str: str
+    ) -> None:
+        """
+        Send an encrypted response to a transmitter.
+        Args:
+            transmitter_id: ID of the transmitter
+            data: Response data to encrypt
+            client_public_key_str: Client's public key in PEM format
+        Raises:
+            EncryptionError: If encryption fails
+            NetworkError: If network request fails
+        """
+        if not self._crypto:
+            raise EncryptionError("Crypto manager not initialized")
+        if not client_public_key_str:
+            raise ValueError("client_public_key_str is required")
         url = f"https://{self.network}/api/tx_response/{transmitter_id}"
-        if encrypted:
-            if not client_public_key_str:
-                print("Error: client_public_key_str is required for encrypted responses.")
-                return
-            public_key_jwk = json.loads(client_public_key_str) if isinstance(client_public_key_str, str) else client_public_key_str
-            public_key = self._load_public_key_from_jwk(public_key_jwk)
-            if not public_key:
-                return
-            encrypted_payload = self._encrypt_with_ecdh_aesgcm(public_key, data)
-            payload = {"data": encrypted_payload, "cell": self.to_dict()}
-        else:
-            payload = {"data": data, "cell": self.to_dict()}
+        public_key = self._crypto.load_public_key_from_pem(client_public_key_str)
+        encrypted_payload = self._crypto.encrypt_with_ecdh_aesgcm(public_key, data)
+        payload = {"data": encrypted_payload, "cell": self.to_dict()}
-        await self._post_request(url, payload)
-    async def activate_tx(self, node_id: str, data: dict, encrypted: Optional[bool] = True):
-        url = f"https://{self.network}/api/activate_tx/{node_id}"
+        await self._network_client.post_request(url, payload)
+        logger.info(f"Response sent to transmitter {transmitter_id}")
+    async def activate_tx(
+        self,
+        cell_id: str,
+        data: Dict[str, Any]
+    ) -> Optional[Dict[str, Any]]:
+        """
+        Activate a transaction with the specified cell.
+        Args:
+            cell_id: Target cell identifier
+            data: Transaction data to encrypt and send
+        Returns:
+            Decrypted response dict or None on failure
+        Raises:
+            CellNotFoundError: If cell_id is not found
+            EncryptionError: If encryption/decryption fails
+            NetworkError: If network request fails
+        """
+        if not self._crypto:
+            raise EncryptionError("Crypto manager not initialized")
+        url = f"https://{self.network}/api/activate_tx/{cell_id}"
         payload = {"cell": self.to_dict()}
-        if encrypted:
-            public_key = await self._get_target_node_public_key(node_id)
-            if not public_key: return None
-            data_to_encrypt = data.copy()
-            data_to_encrypt["publicKey"] = self.get_public_key_jwk()
-            encrypted_payload = self._encrypt_with_ecdh_aesgcm(public_key, data_to_encrypt)
-            payload["data"] = {"encrypted": encrypted_payload}
-        else:
-            payload["data"] = data
-        response_data = await self._post_request(url, payload)
-        if encrypted:
-            if not response_data or "response" not in response_data:
-                print("Unexpected or missing response.")
-                return response_data
-            inner_response = response_data["response"]
-            if "ciphertext" in inner_response:
-                ephemeral_public_key_bytes = base64.urlsafe_b64decode(inner_response["ephemeralPublicKey"] + '==')
-                nonce = base64.urlsafe_b64decode(inner_response["nonce"] + '==')
-                ciphertext = base64.urlsafe_b64decode(inner_response["ciphertext"] + '==')
-                return self._decrypt_with_ecdh_aesgcm(ephemeral_public_key_bytes, nonce, ciphertext)
-            else:
-                print("Server response was not encrypted as expected.")
-                return inner_response
-        else:
+        # Get target cell's public key
+        public_key_pem_str = await self._get_target_cell_public_key(cell_id)
+        public_key_object = self._crypto.load_public_key_from_pem(public_key_pem_str)
+        # Prepare and encrypt data
+        data_to_encrypt = data.copy()
+        data_to_encrypt["public_key"] = self._crypto.get_public_key_pem()
+        encrypted_payload = self._crypto.encrypt_with_ecdh_aesgcm(
+            public_key_object,
+            data_to_encrypt
+        )
+        payload["data"] = {"encrypted": encrypted_payload}
+        response_data = await self._network_client.post_request(url, payload)
+        if not response_data or "response" not in response_data:
+            logger.warning("Unexpected or missing response")
             return response_data
-    async def sync(self) -> AsyncGenerator[str, None]:
-        full_url = f"wss://{self.network}/sync/{self.node_id}"
-        auth_payload = {
-            "host": self.host,
-            "password": self.password,
-            "synapse": self.synapse,
-        }
+        inner_response = response_data["response"]
+        # Decrypt response if encrypted
+        if "ciphertext" in inner_response:
+            try:
+                ephemeral_public_key_bytes = CryptoManager.safe_b64decode(
+                    inner_response["ephemeralPublicKey"]
+                )
+                nonce = CryptoManager.safe_b64decode(inner_response["nonce"])
+                ciphertext = CryptoManager.safe_b64decode(inner_response["ciphertext"])
+                return self._crypto.decrypt_with_ecdh_aesgcm(
+                    ephemeral_public_key_bytes, nonce, ciphertext
+                )
+            except EncryptionError:
+                logger.error("Failed to decrypt response")
+                return None
+        else:
+            logger.debug("Received unencrypted response")
+            return inner_response
+    async def sync(self) -> AsyncGenerator[Dict[str, Any], None]:
+        """
+        Sync with the network and yield operations as they arrive.
+        Yields:
+            Operation dictionaries with decrypted data
+        Raises:
+            ValueError: If not called from Cell instance or host not set
+        """
+        if not isinstance(self, Cell):
+            raise ValueError("sync must be called from a Cell instance")
+        cell = getattr(self, 'host', None)
+        if not cell:
+            raise ValueError("host is required for Cell sync")
+        full_url = f"wss://{self.network}/sync/{cell}"
+        auth_payload = self.to_dict()
+        logger.info(f"Starting sync with {cell}")
+        retry_count = 0
         while True:
             try:
-                async with websockets.connect(full_url) as ws:
+                ssl_context = ssl.create_default_context()
+                async with websockets.connect(full_url, ssl=ssl_context) as ws:
                     await ws.send(json.dumps(auth_payload))
-                    print("Node syncing...")
+                    logger.info(f"Connected and authenticated to {cell}")
+                    retry_count = 0  # Reset on successful connection
                     while True:
                         try:
-                            raw_operation = await ws.recv()
+                            raw_operation = await asyncio.wait_for(
+                                ws.recv(),
+                                timeout=self.config.timeout
+                            )
                             operation = json.loads(raw_operation)
                             if "encrypted" in operation.get("data", {}):
                                 encrypted_data = operation["data"]["encrypted"]
-                                ephemeral_public_key_b64 = encrypted_data["ephemeralPublicKey"]
-                                ephemeral_public_key_b64 += '=' * ((4 - len(ephemeral_public_key_b64) % 4) % 4)
-                                ephemeral_public_key_bytes = base64.urlsafe_b64decode(ephemeral_public_key_b64)
-                                nonce_b64 = encrypted_data["nonce"]
-                                nonce_b64 += '=' * ((4 - len(nonce_b64) % 4) % 4)
-                                nonce = base64.urlsafe_b64decode(nonce_b64)
-                                ciphertext_b64 = encrypted_data["ciphertext"]
-                                ciphertext_b64 += '=' * ((4 - len(ciphertext_b64) % 4) % 4)
-                                ciphertext = base64.urlsafe_b64decode(ciphertext_b64)
-                                decrypted_data = self._decrypt_with_ecdh_aesgcm(
-                                    ephemeral_public_key_bytes, nonce, ciphertext
-                                )
-                                if decrypted_data:
+                                try:
+                                    ephemeral_public_key_bytes = CryptoManager.safe_b64decode(
+                                        encrypted_data["ephemeralPublicKey"]
+                                    )
+                                    nonce = CryptoManager.safe_b64decode(
+                                        encrypted_data["nonce"]
+                                    )
+                                    ciphertext = CryptoManager.safe_b64decode(
+                                        encrypted_data["ciphertext"]
+                                    )
+                                    decrypted_data = self._crypto.decrypt_with_ecdh_aesgcm(
+                                        ephemeral_public_key_bytes, nonce, ciphertext
+                                    )
                                     operation["data"].update(decrypted_data)
                                     operation["data"].pop("encrypted")
                                     yield operation
-                                else:
-                                    print("Failed to decrypt incoming data. Skipping...")
+                                except EncryptionError:
+                                    logger.error("Failed to decrypt operation")
                             else:
-                                yield operation
+                                logger.warning("Received unencrypted data")
                         except asyncio.TimeoutError:
-                            print("No data received. Continuing...")
+                            await ws.ping()
+                            continue
                         except ConnectionClosed as e:
-                            if e.code == 1000:
-                                print(f"WebSocket closed cleanly (code 1000). Reconnecting...")
-                            else:
-                                print(f"Connection closed with error code {e.code}: {e.reason}. Reconnecting...")
+                            logger.warning(f"Connection closed: {e.code} - {e.reason}")
                             break
                         except Exception as e:
-                            print(f"Unexpected error in recv loop: {e}")
+                            logger.error(f"Error in receive loop: {e}")
                             break
-            except websockets.exceptions.WebSocketException as e:
-                print(f"WebSocket error occurred: {e}. Retrying in 5 seconds...")
+            except WebSocketException as e:
+                logger.error(f"WebSocket error: {e}")
             except Exception as e:
-                print(f"General error occurred: {e}. Retrying in 5 seconds...")
-            await asyncio.sleep(3)
-    async def stream(self, label: str, data: dict, node_id: str = None, encrypted: Optional[bool] = True, retry_delay: int = 3):
-        context = ssl.create_default_context()
-        context.check_hostname = True
-        context.verify_mode = ssl.CERT_REQUIRED
-        target_node_public_key = None
-        if encrypted:
-            target_node_public_key = await self._get_target_node_public_key(node_id)
-            if not target_node_public_key:
-                print("Failed to get target node's public key. Cannot stream data.")
-                return
-        while True:
-            try:
-                reader, writer = await asyncio.open_connection(self.network, 55555, ssl=context, server_hostname=self.network)
-                credentials = f"{self.host}\n{self.password}\n{self.synapse}\n{node_id}\n"
-                writer.write(credentials.encode("utf-8"))
-                await writer.drain()
-                response = await reader.read(1024)
-                response_text = response.decode("utf-8").strip()
-                if "Authentication successful" not in response_text:
-                    print("Authentication failed, retrying...")
-                    writer.close()
-                    await writer.wait_closed()
-                    await asyncio.sleep(retry_delay)
-                    continue
+                logger.error(f"General error in sync: {e}")
+            # Exponential backoff for reconnection
+            retry_count += 1
+            delay = min(
+                self.config.retry_delay * (2 ** retry_count),
+                self.config.max_retry_delay
+            )
+            logger.info(f"Reconnecting in {delay}s")
+            await asyncio.sleep(delay)
+    async def stream(self, cell_id: str, data: Dict[str, Any]) -> bool:
+        """
+        Stream data to a target cell.
+        Args:
+            cell_id: Target cell identifier
+            data: Data to encrypt and stream
+        Returns:
+            True if successful, False otherwise
+        Raises:
+            ValueError: If not called from Cell instance or host not set
+            CellNotFoundError: If cell_id is not found
+            EncryptionError: If encryption fails
+        """
+        if not isinstance(self, Cell):
+            raise ValueError("stream must be called from a Cell instance")
+        if not getattr(self, 'host', None):
+            raise ValueError("host is required for Cell stream")
+        if not self._crypto:
+            raise EncryptionError("Crypto manager not initialized")
+        # Get target cell's public key
+        public_key_pem_str = await self._get_target_cell_public_key(cell_id)
+        public_key_object = self._crypto.load_public_key_from_pem(public_key_pem_str)
+        # Prepare and encrypt data
+        data_to_encrypt = data.copy()
+        data_to_encrypt["public_key"] = self._crypto.get_public_key_pem()
+        encrypted_payload = self._crypto.encrypt_with_ecdh_aesgcm(
+            public_key_object,
+            data_to_encrypt
+        )
+        auth_payload = self.to_dict()
+        data_payload = {"data": {"encrypted": encrypted_payload}}
+        send_payload = {**auth_payload, **data_payload}
+        full_url = f"wss://{self.network}/stream/{cell_id}"
+        try:
+            ssl_context = ssl.create_default_context()
+            async with websockets.connect(full_url, ssl=ssl_context) as ws:
+                await ws.send(json.dumps(send_payload))
+                logger.info(f"Data streamed to {cell_id}")
-                stream_payload = {
-                    "label": label,
-                    "data": data.copy()
-                }
+                try:
+                    ack = await asyncio.wait_for(ws.recv(), timeout=2)
+                    logger.debug(f"Server acknowledgment: {ack}")
+                except asyncio.TimeoutError:
+                    logger.debug("No immediate acknowledgment (data sent)")
+                except Exception as e:
+                    logger.warning(f"Error reading acknowledgment: {e}")
-                if encrypted:
-                    data_to_encrypt = data.copy()
-                    data_to_encrypt["publicKey"] = self.get_public_key_jwk()
-                    encrypted_payload = self._encrypt_with_ecdh_aesgcm(target_node_public_key, data_to_encrypt)
-                    stream_payload["data"] = {"encrypted": encrypted_payload}
-                writer.write(json.dumps(stream_payload).encode("utf-8"))
-                await writer.drain()
-                response = await reader.read(1024)
-                response_text = response.decode("utf-8").strip()
+                return True
+        except WebSocketException as e:
+            logger.error(f"WebSocket error during stream: {e}")
+            return False
+        except Exception as e:
+            logger.error(f"Error during stream: {e}")
+            return False
-                if response_text == "Sent":
-                    print(f"Success: {response_text} - {stream_payload}")
-                    break
-                else:
-                    print(f"Error sending: {stream_payload}")
-            except (ssl.SSLError, ConnectionError) as e:
-                print(f"Connection error: {e}, retrying...")
-                await asyncio.sleep(retry_delay)
-            except Exception as e:
-                print(f"Unexpected error: {e}, retrying...")
-                await asyncio.sleep(retry_delay)
-            finally:
-                if 'writer' in locals():
-                    writer.close()
-                    await writer.wait_closed()
+class Cell(BaseClient):
+    """Cell client implementation"""
+    def __init__(self, config: Optional[ClientConfig] = None):
+        super().__init__(config)
+        self.env = self._load_env()
+        private_key = self._load_private_key()
+        self._init_crypto(private_key)
+        self.host = self.env.get("HOST", "")
+        if not self.host:
+            logger.warning("HOST not set in environment")
+    def _load_private_key(self) -> Optional[ec.EllipticCurvePrivateKey]:
+        """Load private key from credentials folder"""
+        credentials_path = self.config.credentials_path
+        credentials_path.mkdir(parents=True, exist_ok=True)
+        key_path = credentials_path / "private_key.pem"
+        try:
+            with open(key_path, "rb") as f:
+                private_key = serialization.load_pem_private_key(
+                    f.read(),
+                    password=None,
+                    backend=default_backend()
+                )
+            # Check file permissions (should be 0600)
+            stat = os.stat(key_path)
+            if stat.st_mode & 0o177:
+                logger.warning(
+                    f"Private key file has insecure permissions: {oct(stat.st_mode)}"
+                )
+            logger.info("Private key loaded successfully")
+            return private_key
+        except FileNotFoundError:
+            logger.error(f"Private key not found at {key_path}")
+            return None
+        except Exception as e:
+            logger.error(f"Error loading private key: {e}")
+            return None
+    def _load_env(self) -> Dict[str, str]:
+        """Load environment variables from .env file"""
+        env_path = self.config.credentials_path / ".env"
+        env_data = {}
+        try:
+            with open(env_path, "r") as f:
+                for line in f:
+                    line = line.strip()
+                    if line and not line.startswith('#') and '=' in line:
+                        key, value = line.split('=', 1)
+                        env_data[key.strip()] = value.strip()
+            logger.info("Environment loaded successfully")
+            return env_data
+        except FileNotFoundError:
+            logger.error(f"Environment file not found at {env_path}")
+            return {}
+        except Exception as e:
+            logger.error(f"Error loading environment: {e}")
+            return {}
+    async def __aenter__(self):
+        await self._network_client.__aenter__()
+        return self
+    async def __aexit__(self, *args):
+        await self._network_client.__aexit__(*args)

neuronum 9.0.0__py3-none-any.whl → 10.0.0__py3-none-any.whl

Potentially problematic release.

neuronum 9.0.0py3-none-any.whl → 10.0.0py3-none-any.whl