js-libp2p-noise/src/utils.ts

import HKDF from 'bcrypto/lib/hkdf'
import x25519 from 'bcrypto/lib/js/x25519'
import SHA256 from 'bcrypto/lib/js/sha256'
import { Buffer } from 'buffer'
import PeerId from 'peer-id'
import { keys } from 'libp2p-crypto'
import { KeyPair } from './@types/libp2p'
import { bytes, bytes32 } from './@types/basic'
import { Hkdf, INoisePayload } from './@types/handshake'
import { pb } from './proto/payload'
import uint8ArrayEquals from 'uint8arrays/equals'

const NoiseHandshakePayloadProto = pb.NoiseHandshakePayload

export function generateKeypair (): KeyPair {
  const privateKey = x25519.privateKeyGenerate()
  const publicKey = x25519.publicKeyCreate(privateKey)

  return {
    publicKey,
    privateKey
  }
}

export async function getPayload (
  localPeer: PeerId,
  staticPublicKey: bytes,
  earlyData?: bytes
): Promise<bytes> {
  const signedPayload = await signPayload(localPeer, getHandshakePayload(staticPublicKey))
  const earlyDataPayload = earlyData || Buffer.alloc(0)

  return await createHandshakePayload(
    localPeer.marshalPubKey(),
    signedPayload,
    earlyDataPayload
  )
}

export function createHandshakePayload (
  libp2pPublicKey: Uint8Array,
  signedPayload: Uint8Array,
  earlyData?: Uint8Array
): bytes {
  const payloadInit = NoiseHandshakePayloadProto.create({
    identityKey: Buffer.from(libp2pPublicKey),
    identitySig: signedPayload,
    data: earlyData || null
  })

  return Buffer.from(NoiseHandshakePayloadProto.encode(payloadInit).finish())
}

export async function signPayload (peerId: PeerId, payload: bytes): Promise<bytes> {
  return Buffer.from(await peerId.privKey.sign(payload))
}

export async function getPeerIdFromPayload (payload: pb.INoiseHandshakePayload): Promise<PeerId> {
  return await PeerId.createFromPubKey(Buffer.from(payload.identityKey as Uint8Array))
}

export function decodePayload (payload: bytes|Uint8Array): pb.INoiseHandshakePayload {
  return NoiseHandshakePayloadProto.toObject(
    NoiseHandshakePayloadProto.decode(Buffer.from(payload))
  ) as INoisePayload
}

export function getHandshakePayload (publicKey: bytes): bytes {
  return Buffer.concat([Buffer.from('noise-libp2p-static-key:'), publicKey])
}

async function isValidPeerId (peerId: Uint8Array, publicKeyProtobuf: bytes) {
  const generatedPeerId = await PeerId.createFromPubKey(publicKeyProtobuf)
  return uint8ArrayEquals(generatedPeerId.id, peerId)
}

/**
 * Verifies signed payload, throws on any irregularities.
 *
 * @param {bytes} noiseStaticKey - owner's noise static key
 * @param {bytes} payload - decoded payload
 * @param {PeerId} remotePeer - owner's libp2p peer ID
 * @returns {Promise<PeerId>} - peer ID of payload owner
 */
export async function verifySignedPayload (
  noiseStaticKey: bytes,
  payload: pb.INoiseHandshakePayload,
  remotePeer: PeerId
): Promise<PeerId> {
  const identityKey = Buffer.from(payload.identityKey as Uint8Array)
  if (!(await isValidPeerId(remotePeer.id, identityKey))) {
    throw new Error("Peer ID doesn't match libp2p public key.")
  }
  const generatedPayload = getHandshakePayload(noiseStaticKey)
  // Unmarshaling from PublicKey protobuf
  const publicKey = keys.unmarshalPublicKey(identityKey)
  if (!payload.identitySig || !publicKey.verify(generatedPayload, Buffer.from(payload.identitySig))) {
    throw new Error("Static key doesn't match to peer that signed payload!")
  }
  return PeerId.createFromPubKey(identityKey)
}

export function getHkdf (ck: bytes32, ikm: bytes): Hkdf {
  const info = Buffer.alloc(0)
  const prk = HKDF.extract(SHA256, ikm, ck)
  const okm = HKDF.expand(SHA256, prk, info, 96)

  const k1 = okm.slice(0, 32)
  const k2 = okm.slice(32, 64)
  const k3 = okm.slice(64, 96)

  return [k1, k2, k3]
}

export function isValidPublicKey (pk: bytes): boolean {
  return x25519.publicKeyVerify(pk.slice(0, 32))
}
fix automatic lint 2020-06-19 12:49:40 +02:00			`import HKDF from 'bcrypto/lib/hkdf'`
			`import x25519 from 'bcrypto/lib/js/x25519'`
			`import SHA256 from 'bcrypto/lib/js/sha256'`
			`import { Buffer } from 'buffer'`
			`import PeerId from 'peer-id'`
			`import { keys } from 'libp2p-crypto'`
			`import { KeyPair } from './@types/libp2p'`
			`import { bytes, bytes32 } from './@types/basic'`
			`import { Hkdf, INoisePayload } from './@types/handshake'`
			`import { pb } from './proto/payload'`
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`import uint8ArrayEquals from 'uint8arrays/equals'`
fix automatic lint 2020-06-19 12:49:40 +02:00
			`const NoiseHandshakePayloadProto = pb.NoiseHandshakePayload`

			`export function generateKeypair (): KeyPair {`
			`const privateKey = x25519.privateKeyGenerate()`
			`const publicKey = x25519.publicKeyCreate(privateKey)`
Create interface according to spec 2019-11-11 21:58:04 +01:00
			`return {`
			`publicKey,`
fix automatic lint 2020-06-19 12:49:40 +02:00			`privateKey`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`
			`}`

fix automatic lint 2020-06-19 12:49:40 +02:00			`export async function getPayload (`
use libp2p keys from PeerId argument 2020-01-07 16:59:41 +01:00			`localPeer: PeerId,`
			`staticPublicKey: bytes,`
fix automatic lint 2020-06-19 12:49:40 +02:00			`earlyData?: bytes`
use libp2p keys from PeerId argument 2020-01-07 16:59:41 +01:00			`): Promise<bytes> {`
fix automatic lint 2020-06-19 12:49:40 +02:00			`const signedPayload = await signPayload(localPeer, getHandshakePayload(staticPublicKey))`
			`const earlyDataPayload = earlyData \|\| Buffer.alloc(0)`
use libp2p keys from PeerId argument 2020-01-07 16:59:41 +01:00
			`return await createHandshakePayload(`
			`localPeer.marshalPubKey(),`
			`signedPayload,`
Remove signing early data payload and prefix 2020-02-05 22:16:48 +01:00			`earlyDataPayload`
fix automatic lint 2020-06-19 12:49:40 +02:00			`)`
use libp2p keys from PeerId argument 2020-01-07 16:59:41 +01:00			`}`

lint fixes 2020-06-19 13:06:31 +02:00			`export function createHandshakePayload (`
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`libp2pPublicKey: Uint8Array,`
			`signedPayload: Uint8Array,`
			`earlyData?: Uint8Array`
lint fixes 2020-06-19 13:06:31 +02:00			`): bytes {`
adjust code to new proto 2020-02-17 09:18:44 +01:00			`const payloadInit = NoiseHandshakePayloadProto.create({`
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`identityKey: Buffer.from(libp2pPublicKey),`
Rename protobuf fields 2020-02-05 22:10:51 +01:00			`identitySig: signedPayload,`
fix automatic lint 2020-06-19 12:49:40 +02:00			`data: earlyData \|\| null`
			`})`
Handshake payload refactor 2019-11-20 21:38:14 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`return Buffer.from(NoiseHandshakePayloadProto.encode(payloadInit).finish())`
Handshake payload refactor 2019-11-20 21:38:14 +01:00			`}`

fix automatic lint 2020-06-19 12:49:40 +02:00			`export async function signPayload (peerId: PeerId, payload: bytes): Promise<bytes> {`
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`return Buffer.from(await peerId.privKey.sign(payload))`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`
Handshake payload refactor 2019-11-20 21:38:14 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`export async function getPeerIdFromPayload (payload: pb.INoiseHandshakePayload): Promise<PeerId> {`
			`return await PeerId.createFromPubKey(Buffer.from(payload.identityKey as Uint8Array))`
better ik flow 2020-02-07 20:21:27 +01:00			`}`

lint fixes 2020-06-19 13:06:31 +02:00			`export function decodePayload (payload: bytes\|Uint8Array): pb.INoiseHandshakePayload {`
adjust code to new proto 2020-02-17 09:18:44 +01:00			`return NoiseHandshakePayloadProto.toObject(`
fix buffer usage in browser 2020-03-11 09:43:40 +01:00			`NoiseHandshakePayloadProto.decode(Buffer.from(payload))`
fix automatic lint 2020-06-19 12:49:40 +02:00			`) as INoisePayload`
better ik flow 2020-02-07 20:21:27 +01:00			`}`

fix automatic lint 2020-06-19 12:49:40 +02:00			`export function getHandshakePayload (publicKey: bytes): bytes {`
			`return Buffer.concat([Buffer.from('noise-libp2p-static-key:'), publicKey])`
fix return types 2020-02-14 10:10:42 +01:00			`}`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`async function isValidPeerId (peerId: Uint8Array, publicKeyProtobuf: bytes) {`
fix automatic lint 2020-06-19 12:49:40 +02:00			`const generatedPeerId = await PeerId.createFromPubKey(publicKeyProtobuf)`
chore: update deps to latest versions I've tried to make the minimum amount of changes necessary for this, since the underlying crypto libraries only support node Buffers or BufferLists there doesn't seem a lot of point in doing lots of conversions between Uint8Arrays and Buffers. BREAKING CHANGES: - All deps use Uint8Arrays in place of node Buffers 2020-08-11 11:41:10 +01:00			`return uint8ArrayEquals(generatedPeerId.id, peerId)`
Write functions for verification 2019-12-02 12:53:00 +01:00			`}`

Update setting remote id 2020-02-08 12:23:35 +01:00			`/**`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`* Verifies signed payload, throws on any irregularities.`
chore: update deps 2021-01-25 11:30:58 +01:00			`*`
Update setting remote id 2020-02-08 12:23:35 +01:00			`* @param {bytes} noiseStaticKey - owner's noise static key`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`* @param {bytes} payload - decoded payload`
			`* @param {PeerId} remotePeer - owner's libp2p peer ID`
Update setting remote id 2020-02-08 12:23:35 +01:00			`* @returns {Promise<PeerId>} - peer ID of payload owner`
			`*/`
fix automatic lint 2020-06-19 12:49:40 +02:00			`export async function verifySignedPayload (`
Update setting remote id 2020-02-08 12:23:35 +01:00			`noiseStaticKey: bytes,`
adjust code to new proto 2020-02-17 09:18:44 +01:00			`payload: pb.INoiseHandshakePayload,`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`remotePeer: PeerId`
Update setting remote id 2020-02-08 12:23:35 +01:00			`): Promise<PeerId> {`
fix automatic lint 2020-06-19 12:49:40 +02:00			`const identityKey = Buffer.from(payload.identityKey as Uint8Array)`
fix buffer usage in browser 2020-03-11 09:43:40 +01:00			`if (!(await isValidPeerId(remotePeer.id, identityKey))) {`
fix automatic lint 2020-06-19 12:49:40 +02:00			`throw new Error("Peer ID doesn't match libp2p public key.")`
Verify peer id 2019-12-03 13:39:33 +01:00			`}`
fix automatic lint 2020-06-19 12:49:40 +02:00			`const generatedPayload = getHandshakePayload(noiseStaticKey)`
Remove comment 2020-01-07 17:08:08 +01:00			`// Unmarshaling from PublicKey protobuf`
fix automatic lint 2020-06-19 12:49:40 +02:00			`const publicKey = keys.unmarshalPublicKey(identityKey)`
Fix yarn.lock 2020-04-22 19:31:24 +02:00			`if (!payload.identitySig \|\| !publicKey.verify(generatedPayload, Buffer.from(payload.identitySig))) {`
fix automatic lint 2020-06-19 12:49:40 +02:00			`throw new Error("Static key doesn't match to peer that signed payload!")`
Write functions for verification 2019-12-02 12:53:00 +01:00			`}`
fix automatic lint 2020-06-19 12:49:40 +02:00			`return PeerId.createFromPubKey(identityKey)`
Write functions for verification 2019-12-02 12:53:00 +01:00			`}`
Move common function to abstract class 2019-12-24 21:15:38 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`export function getHkdf (ck: bytes32, ikm: bytes): Hkdf {`
			`const info = Buffer.alloc(0)`
			`const prk = HKDF.extract(SHA256, ikm, ck)`
			`const okm = HKDF.expand(SHA256, prk, info, 96)`
Move common function to abstract class 2019-12-24 21:15:38 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`const k1 = okm.slice(0, 32)`
			`const k2 = okm.slice(32, 64)`
			`const k3 = okm.slice(64, 96)`
Move common function to abstract class 2019-12-24 21:15:38 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`return [k1, k2, k3]`
Move common function to abstract class 2019-12-24 21:15:38 +01:00			`}`
Address PR comments 2019-12-29 18:23:43 +01:00
fix automatic lint 2020-06-19 12:49:40 +02:00			`export function isValidPublicKey (pk: bytes): boolean {`
			`return x25519.publicKeyVerify(pk.slice(0, 32))`
Address PR comments 2019-12-29 18:23:43 +01:00			`}`