js-libp2p-noise/src/handshake-ik.ts

import {WrappedConnection} from "./noise";
import {IK} from "./handshakes/ik";
import {NoiseSession} from "./@types/handshake";
import {bytes, bytes32} from "./@types/basic";
import {KeyPair} from "./@types/libp2p";
import {IHandshake} from "./@types/handshake-interface";
import {Buffer} from "buffer";
import {decode0, decode1, encode0, encode1} from "./encoder";
import {decodePayload, getPeerIdFromPayload, verifySignedPayload} from "./utils";
import {FailedIKError} from "./errors";
import {logger} from "./logger";
import PeerId from "peer-id";

export class IKHandshake implements IHandshake {
  public isInitiator: boolean;
  public session: NoiseSession;
  public remotePeer!: PeerId;
  public remoteEarlyData: Buffer;

  private payload: bytes;
  private prologue: bytes32;
  private staticKeypair: KeyPair;
  private connection: WrappedConnection;
  private ik: IK;

  constructor(
    isInitiator: boolean,
    payload: bytes,
    prologue: bytes32,
    staticKeypair: KeyPair,
    connection: WrappedConnection,
    remoteStaticKey: bytes,
    remotePeer?: PeerId,
    handshake?: IK,
  ) {
    this.isInitiator = isInitiator;
    this.payload = Buffer.from(payload);
    this.prologue = prologue;
    this.staticKeypair = staticKeypair;
    this.connection = connection;
    if(remotePeer) {
      this.remotePeer = remotePeer;
    }
    this.ik = handshake || new IK();
    this.session = this.ik.initSession(this.isInitiator, this.prologue, this.staticKeypair, remoteStaticKey);
    this.remoteEarlyData = Buffer.alloc(0)
  }

  public async stage0(): Promise<void> {
    if (this.isInitiator) {
      logger("IK Stage 0 - Initiator sending message...");
      const messageBuffer = this.ik.sendMessage(this.session, this.payload);
      this.connection.writeLP(encode1(messageBuffer));
      logger("IK Stage 0 - Initiator sent message.");
    } else {
      logger("IK Stage 0 - Responder receiving message...");
      const receivedMsg = await this.connection.readLP();
      try {
        const receivedMessageBuffer = decode1(receivedMsg.slice());
        const {plaintext, valid} = this.ik.recvMessage(this.session, receivedMessageBuffer);
        if(!valid) {
          throw new Error("ik handshake stage 0 decryption validation fail");
        }
        logger("IK Stage 0 - Responder got message, going to verify payload.");
        const decodedPayload = await decodePayload(plaintext);
        this.remotePeer = this.remotePeer || await getPeerIdFromPayload(decodedPayload);
        await verifySignedPayload(this.session.hs.rs, decodedPayload, this.remotePeer);
        this.setRemoteEarlyData(decodedPayload.data);
        logger("IK Stage 0 - Responder successfully verified payload!");
      } catch (e) {
        logger("Responder breaking up with IK handshake in stage 0.");

        throw new FailedIKError(receivedMsg, `Error occurred while verifying initiator's signed payload: ${e.message}`);
      }
    }
  }

  public async stage1(): Promise<void> {
    if (this.isInitiator) {
      logger("IK Stage 1 - Initiator receiving message...");
      const receivedMsg = (await this.connection.readLP()).slice();
      const receivedMessageBuffer = decode0(Buffer.from(receivedMsg));
      const {plaintext, valid} = this.ik.recvMessage(this.session, receivedMessageBuffer);
      logger("IK Stage 1 - Initiator got message, going to verify payload.");
      try {
        if(!valid) {
          throw new Error("ik stage 1 decryption validation fail");
        }
        const decodedPayload = await decodePayload(plaintext);
        this.remotePeer = this.remotePeer || await getPeerIdFromPayload(decodedPayload);
        await verifySignedPayload(receivedMessageBuffer.ns.slice(0, 32), decodedPayload, this.remotePeer);
        this.setRemoteEarlyData(decodedPayload.data);
        logger("IK Stage 1 - Initiator successfully verified payload!");
      } catch (e) {
        logger("Initiator breaking up with IK handshake in stage 1.");
        throw new FailedIKError(receivedMsg, `Error occurred while verifying responder's signed payload: ${e.message}`);
      }
    } else {
      logger("IK Stage 1 - Responder sending message...");
      const messageBuffer = this.ik.sendMessage(this.session, this.payload);
      this.connection.writeLP(encode0(messageBuffer));
      logger("IK Stage 1 - Responder sent message...");
    }
  }

  public decrypt(ciphertext: bytes, session: NoiseSession): {plaintext: bytes; valid: boolean} {
    const cs = this.getCS(session, false);
    return this.ik.decryptWithAd(cs, Buffer.alloc(0), ciphertext);
  }

  public encrypt(plaintext: Buffer, session: NoiseSession): Buffer {
    const cs = this.getCS(session);
    return this.ik.encryptWithAd(cs, Buffer.alloc(0), plaintext);
  }

  public getLocalEphemeralKeys(): KeyPair {
    if (!this.session.hs.e) {
      throw new Error("Ephemeral keys do not exist.");
    }

    return this.session.hs.e;
  }

  private getCS(session: NoiseSession, encryption = true) {
    if (!session.cs1 || !session.cs2) {
      throw new Error("Handshake not completed properly, cipher state does not exist.");
    }

    if (this.isInitiator) {
      return encryption ? session.cs1 : session.cs2;
    } else {
      return encryption ? session.cs2 : session.cs1;
    }
  }

  private setRemoteEarlyData(data: Uint8Array|null|undefined): void {
    if(data){
      this.remoteEarlyData = Buffer.from(data.buffer, data.byteOffset, data.length);
    }
  }
}
Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00			`import {WrappedConnection} from "./noise";`
Better naming 2020-01-05 19:09:59 +01:00			`import {IK} from "./handshakes/ik";`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`import {NoiseSession} from "./@types/handshake";`
			`import {bytes, bytes32} from "./@types/basic";`
use built in peer id types 2020-02-07 12:59:52 +01:00			`import {KeyPair} from "./@types/libp2p";`
Address PR comments 2020-01-07 13:34:45 +01:00			`import {IHandshake} from "./@types/handshake-interface";`
Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00			`import {Buffer} from "buffer";`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`import {decode0, decode1, encode0, encode1} from "./encoder";`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`import {decodePayload, getPeerIdFromPayload, verifySignedPayload} from "./utils";`
Test and fix failed IK handshakes 2020-01-15 17:27:32 +01:00			`import {FailedIKError} from "./errors";`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`import {logger} from "./logger";`
use built in peer id types 2020-02-07 12:59:52 +01:00			`import PeerId from "peer-id";`
Create handshake handler files 2020-01-03 14:53:14 +01:00
Address PR comments 2020-01-07 13:34:45 +01:00			`export class IKHandshake implements IHandshake {`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`public isInitiator: boolean;`
			`public session: NoiseSession;`
better ik flow 2020-02-07 20:21:27 +01:00			`public remotePeer!: PeerId;`
Rename to remoteEarlyData 2020-04-17 11:04:50 +02:00			`public remoteEarlyData: Buffer;`
Create handshake handler files 2020-01-03 14:53:14 +01:00
Fix merging updated payload signing 2020-01-11 20:20:57 +01:00			`private payload: bytes;`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`private prologue: bytes32;`
Address PR comments 2020-01-07 13:34:45 +01:00			`private staticKeypair: KeyPair;`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`private connection: WrappedConnection;`
Better naming 2020-01-05 19:09:59 +01:00			`private ik: IK;`
Create handshake handler files 2020-01-03 14:53:14 +01:00
			`constructor(`
			`isInitiator: boolean,`
Fix merging updated payload signing 2020-01-11 20:20:57 +01:00			`payload: bytes,`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`prologue: bytes32,`
Address PR comments 2020-01-07 13:34:45 +01:00			`staticKeypair: KeyPair,`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`connection: WrappedConnection,`
Use static key caching 2020-01-13 16:33:58 +01:00			`remoteStaticKey: bytes,`
better ik flow 2020-02-07 20:21:27 +01:00			`remotePeer?: PeerId,`
Better naming 2020-01-05 19:09:59 +01:00			`handshake?: IK,`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`) {`
			`this.isInitiator = isInitiator;`
Remove async from keycache 2020-01-18 16:31:05 +01:00			`this.payload = Buffer.from(payload);`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`this.prologue = prologue;`
Address PR comments 2020-01-07 13:34:45 +01:00			`this.staticKeypair = staticKeypair;`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`this.connection = connection;`
better ik flow 2020-02-07 20:21:27 +01:00			`if(remotePeer) {`
			`this.remotePeer = remotePeer;`
			`}`
Better naming 2020-01-05 19:09:59 +01:00			`this.ik = handshake \|\| new IK();`
Use static key caching 2020-01-13 16:33:58 +01:00			`this.session = this.ik.initSession(this.isInitiator, this.prologue, this.staticKeypair, remoteStaticKey);`
Rename to remoteEarlyData 2020-04-17 11:04:50 +02:00			`this.remoteEarlyData = Buffer.alloc(0)`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`}`
Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00
Write and test IK stages 2020-01-15 11:32:40 +01:00			`public async stage0(): Promise<void> {`
			`if (this.isInitiator) {`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 0 - Initiator sending message...");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`const messageBuffer = this.ik.sendMessage(this.session, this.payload);`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`this.connection.writeLP(encode1(messageBuffer));`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 0 - Initiator sent message.");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`} else {`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 0 - Responder receiving message...");`
Remove slice where not necessary 2020-01-21 11:04:34 +01:00			`const receivedMsg = await this.connection.readLP();`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`try {`
fix return types 2020-02-14 10:10:42 +01:00			`const receivedMessageBuffer = decode1(receivedMsg.slice());`
validate aead decryption 2020-03-01 19:05:53 +01:00			`const {plaintext, valid} = this.ik.recvMessage(this.session, receivedMessageBuffer);`
			`if(!valid) {`
			`throw new Error("ik handshake stage 0 decryption validation fail");`
			`}`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 0 - Responder got message, going to verify payload.");`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`const decodedPayload = await decodePayload(plaintext);`
			`this.remotePeer = this.remotePeer \|\| await getPeerIdFromPayload(decodedPayload);`
handle aead auth tag 2020-02-17 12:11:55 +01:00			`await verifySignedPayload(this.session.hs.rs, decodedPayload, this.remotePeer);`
Rename function 2020-04-17 11:09:46 +02:00			`this.setRemoteEarlyData(decodedPayload.data);`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 0 - Responder successfully verified payload!");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`} catch (e) {`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`logger("Responder breaking up with IK handshake in stage 0.");`
better ik flow 2020-02-07 20:21:27 +01:00
Test and fix failed IK handshakes 2020-01-15 17:27:32 +01:00			throw new FailedIKError(receivedMsg, `Error occurred while verifying initiator's signed payload: ${e.message}`);
Write and test IK stages 2020-01-15 11:32:40 +01:00			`}`
			`}`
			`}`

			`public async stage1(): Promise<void> {`
			`if (this.isInitiator) {`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 1 - Initiator receiving message...");`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`const receivedMsg = (await this.connection.readLP()).slice();`
			`const receivedMessageBuffer = decode0(Buffer.from(receivedMsg));`
validate aead decryption 2020-03-01 19:05:53 +01:00			`const {plaintext, valid} = this.ik.recvMessage(this.session, receivedMessageBuffer);`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 1 - Initiator got message, going to verify payload.");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`try {`
validate aead decryption 2020-03-01 19:05:53 +01:00			`if(!valid) {`
			`throw new Error("ik stage 1 decryption validation fail");`
			`}`
Address PR comment and refactor setting remote peer 2020-02-10 13:51:32 +01:00			`const decodedPayload = await decodePayload(plaintext);`
			`this.remotePeer = this.remotePeer \|\| await getPeerIdFromPayload(decodedPayload);`
handle aead auth tag 2020-02-17 12:11:55 +01:00			`await verifySignedPayload(receivedMessageBuffer.ns.slice(0, 32), decodedPayload, this.remotePeer);`
Rename function 2020-04-17 11:09:46 +02:00			`this.setRemoteEarlyData(decodedPayload.data);`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 1 - Initiator successfully verified payload!");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`} catch (e) {`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`logger("Initiator breaking up with IK handshake in stage 1.");`
Test and fix failed IK handshakes 2020-01-15 17:27:32 +01:00			throw new FailedIKError(receivedMsg, `Error occurred while verifying responder's signed payload: ${e.message}`);
Write and test IK stages 2020-01-15 11:32:40 +01:00			`}`
			`} else {`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 1 - Responder sending message...");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`const messageBuffer = this.ik.sendMessage(this.session, this.payload);`
Add IK -> XX fallback tests and fix things 2020-01-17 23:40:51 +01:00			`this.connection.writeLP(encode0(messageBuffer));`
Add another test + logger 2020-01-17 23:50:41 +01:00			`logger("IK Stage 1 - Responder sent message...");`
Write and test IK stages 2020-01-15 11:32:40 +01:00			`}`
			`}`

fin lint 2020-03-01 19:06:28 +01:00			`public decrypt(ciphertext: bytes, session: NoiseSession): {plaintext: bytes; valid: boolean} {`
Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00			`const cs = this.getCS(session, false);`
			`return this.ik.decryptWithAd(cs, Buffer.alloc(0), ciphertext);`
			`}`

			`public encrypt(plaintext: Buffer, session: NoiseSession): Buffer {`
			`const cs = this.getCS(session);`
			`return this.ik.encryptWithAd(cs, Buffer.alloc(0), plaintext);`
			`}`

Fix fetching ephemeral keys from IK 2020-02-08 11:21:51 +01:00			`public getLocalEphemeralKeys(): KeyPair {`
Create XX fallback flow 2020-01-05 19:00:16 +01:00			`if (!this.session.hs.e) {`
			`throw new Error("Ephemeral keys do not exist.");`
			`}`

Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00			`return this.session.hs.e;`
			`}`

			`private getCS(session: NoiseSession, encryption = true) {`
			`if (!session.cs1 \|\| !session.cs2) {`
			`throw new Error("Handshake not completed properly, cipher state does not exist.");`
			`}`

			`if (this.isInitiator) {`
			`return encryption ? session.cs1 : session.cs2;`
			`} else {`
			`return encryption ? session.cs2 : session.cs1;`
			`}`
			`}`
Add early data property to handshake 2020-04-17 10:35:37 +02:00
Rename function 2020-04-17 11:09:46 +02:00			`private setRemoteEarlyData(data: Uint8Array\|null\|undefined): void {`
Add early data property to handshake 2020-04-17 10:35:37 +02:00			`if(data){`
Fix test 2020-04-17 11:07:58 +02:00			`this.remoteEarlyData = Buffer.from(data.buffer, data.byteOffset, data.length);`
Add early data property to handshake 2020-04-17 10:35:37 +02:00			`}`
			`}`
Create handshake handler files 2020-01-03 14:53:14 +01:00			`}`