js-libp2p-noise/src/xx.ts

import {bytes32, bytes16, uint32, uint64, bytes} from './types/basic'
import { Buffer } from 'buffer';
import * as crypto from 'libp2p-crypto';
import * as sodium from 'sodium-native';

type KeyPair = {
  publicKey: bytes32,
  privateKey: bytes32,
}

type CipherState = {
  k: bytes32,
  n: uint32,
}

type SymmetricState = {
  cs: CipherState,
  ck: bytes32,
  h: bytes32,
}

type HandshakeState = {
  ss: SymmetricState,
  s: KeyPair,
  e: KeyPair,
  rs: bytes32,
  re: bytes32,
  psk: bytes32,
}

type NoiseSession = {
  hs: HandshakeState,
  h: bytes32,
  cs1: CipherState,
  c2: CipherState,
  mc: uint64,
  i: boolean,
}

const emptyKey = Buffer.alloc(32) as bytes32;
const minNonce = 0;

class XXHandshake {
  async initializeInitiator(prologue: bytes32, s: KeyPair, rs: bytes32, psk: bytes32) : Promise<HandshakeState> {
    const e: KeyPair;
    const re: bytes32;
    const name = "Noise_XX_25519_ChaChaPoly_SHA256";
    const ss = await this.initializeSymmetric(name);
    await this.mixHash(ss, prologue);

    return {ss, s, e, rs, re, psk};
  }

  async initializeResponder(prologue: bytes32, s: KeyPair, rs: bytes32, psk: bytes32) : Promise<HandshakeState> {
    const e: KeyPair;
    const re: bytes32;
    const name = "Noise_XX_25519_ChaChaPoly_SHA256";
    const ss = await this.initializeSymmetric(name);
    await this.mixHash(ss, prologue);

    return {ss, s, e, rs, re, psk};
  }

  incrementNonce(n: uint32) : uint32 {
    return n + 1;
  }

  encrypt(k: bytes32, n: uint32, ad: bytes, plaintext: bytes) : bytes {
    const ElongatedNonce = sodium.sodium_malloc(sodium.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES); // 12U ?
    sodium.sodium_memzero(ElongatedNonce);
    ElongatedNonce.set(n, 16);

    const clen = plaintext.length + sodium.crypto_aead_xchacha20poly1305_ietf_ABYTES;
    const c = sodium.sodium_malloc(clen);
    sodium.crypto_aead_xchacha20poly1305_ietf_encrypt(c, plaintext, ad, null, ElongatedNonce, k);
  }

  // Cipher state related
  initializeKey(k: bytes32) : CipherState {
    const n = minNonce;
    return { k, n };
  }

  setNonce(cs: CipherState, nonce: uint32) {
    cs.n = nonce;
  }

  encryptWithAd(cs: CipherState, ad: bytes, plaintext: bytes) : bytes {
    const e = this.encrypt(cs.k, cs.n, ad, plaintext);
    this.setNonce(cs, this.incrementNonce(cs.n));
    return e;
  }

  // Symmetric state related

  async initializeSymmetric(protocolName: string) : Promise<SymmetricState> {
    const h = await this.hashProtocolName(protocolName);
    const ck = h;
    const cs = this.initializeKey(emptyKey);

    return { cs, ck, h };
  }

  async hashProtocolName(protocolName: string) : Promise<bytes32> {
    if (protocolName.length <= 32) {
      return new Promise(resolve => {
        const h = new Buffer(32);
        h.write(protocolName);
        resolve(h)
      });
    } else {
      return await this.getHash(Buffer.from(protocolName), new Buffer([]));
    }
  }

  async mixHash(ss: SymmetricState, data: bytes) {
    ss.h = await this.getHash(ss.h, data);
  }

  async getHash(a: bytes, b: bytes) : Promise<bytes32> {
    return await crypto.hmac.create('sha256', Buffer.from([...a, ...b]))
  }

  async initSession(initiator: boolean, prologue: bytes32[], s: KeyPair, rs: bytes32) : Promise<NoiseSession> {
    let session: NoiseSession;
    const psk = emptyKey;

    if (initiator) {
      session.hs = await this.initializeInitiator(prologue, s, rs, psk);
    } else {
      session.hs = await this.initializeResponder(prologue, s, rs, psk);
    }

    session.i = initiator;
    session.mc = 0;
    return session;
  }
}
Finish init session functions 2019-10-31 17:35:18 +01:00			`import {bytes32, bytes16, uint32, uint64, bytes} from './types/basic'`
			`import { Buffer } from 'buffer';`
			`import * as crypto from 'libp2p-crypto';`
Add encryption methods 2019-11-01 11:30:28 +01:00			`import * as sodium from 'sodium-native';`
Finish init session functions 2019-10-31 17:35:18 +01:00
			`type KeyPair = {`
			`publicKey: bytes32,`
			`privateKey: bytes32,`
			`}`

			`type CipherState = {`
			`k: bytes32,`
			`n: uint32,`
			`}`

			`type SymmetricState = {`
			`cs: CipherState,`
			`ck: bytes32,`
			`h: bytes32,`
			`}`

			`type HandshakeState = {`
			`ss: SymmetricState,`
			`s: KeyPair,`
			`e: KeyPair,`
			`rs: bytes32,`
			`re: bytes32,`
			`psk: bytes32,`
			`}`

			`type NoiseSession = {`
			`hs: HandshakeState,`
			`h: bytes32,`
			`cs1: CipherState,`
			`c2: CipherState,`
			`mc: uint64,`
			`i: boolean,`
			`}`

			`const emptyKey = Buffer.alloc(32) as bytes32;`
			`const minNonce = 0;`

			`class XXHandshake {`
			`async initializeInitiator(prologue: bytes32, s: KeyPair, rs: bytes32, psk: bytes32) : Promise<HandshakeState> {`
			`const e: KeyPair;`
			`const re: bytes32;`
			`const name = "Noise_XX_25519_ChaChaPoly_SHA256";`
			`const ss = await this.initializeSymmetric(name);`
			`await this.mixHash(ss, prologue);`

			`return {ss, s, e, rs, re, psk};`
			`}`

			`async initializeResponder(prologue: bytes32, s: KeyPair, rs: bytes32, psk: bytes32) : Promise<HandshakeState> {`
			`const e: KeyPair;`
			`const re: bytes32;`
			`const name = "Noise_XX_25519_ChaChaPoly_SHA256";`
			`const ss = await this.initializeSymmetric(name);`
			`await this.mixHash(ss, prologue);`

			`return {ss, s, e, rs, re, psk};`
			`}`

Add encryption methods 2019-11-01 11:30:28 +01:00			`incrementNonce(n: uint32) : uint32 {`
			`return n + 1;`
			`}`

			`encrypt(k: bytes32, n: uint32, ad: bytes, plaintext: bytes) : bytes {`
			`const ElongatedNonce = sodium.sodium_malloc(sodium.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES); // 12U ?`
			`sodium.sodium_memzero(ElongatedNonce);`
			`ElongatedNonce.set(n, 16);`

			`const clen = plaintext.length + sodium.crypto_aead_xchacha20poly1305_ietf_ABYTES;`
			`const c = sodium.sodium_malloc(clen);`
			`sodium.crypto_aead_xchacha20poly1305_ietf_encrypt(c, plaintext, ad, null, ElongatedNonce, k);`
			`}`

			`// Cipher state related`
Finish init session functions 2019-10-31 17:35:18 +01:00			`initializeKey(k: bytes32) : CipherState {`
			`const n = minNonce;`
			`return { k, n };`
			`}`

Add encryption methods 2019-11-01 11:30:28 +01:00			`setNonce(cs: CipherState, nonce: uint32) {`
			`cs.n = nonce;`
			`}`

			`encryptWithAd(cs: CipherState, ad: bytes, plaintext: bytes) : bytes {`
			`const e = this.encrypt(cs.k, cs.n, ad, plaintext);`
			`this.setNonce(cs, this.incrementNonce(cs.n));`
			`return e;`
			`}`

			`// Symmetric state related`

Finish init session functions 2019-10-31 17:35:18 +01:00			`async initializeSymmetric(protocolName: string) : Promise<SymmetricState> {`
			`const h = await this.hashProtocolName(protocolName);`
			`const ck = h;`
			`const cs = this.initializeKey(emptyKey);`

			`return { cs, ck, h };`
			`}`

			`async hashProtocolName(protocolName: string) : Promise<bytes32> {`
			`if (protocolName.length <= 32) {`
			`return new Promise(resolve => {`
			`const h = new Buffer(32);`
			`h.write(protocolName);`
			`resolve(h)`
			`});`
			`} else {`
			`return await this.getHash(Buffer.from(protocolName), new Buffer([]));`
			`}`
			`}`

			`async mixHash(ss: SymmetricState, data: bytes) {`
			`ss.h = await this.getHash(ss.h, data);`
			`}`

			`async getHash(a: bytes, b: bytes) : Promise<bytes32> {`
			`return await crypto.hmac.create('sha256', Buffer.from([...a, ...b]))`
			`}`

			`async initSession(initiator: boolean, prologue: bytes32[], s: KeyPair, rs: bytes32) : Promise<NoiseSession> {`
			`let session: NoiseSession;`
			`const psk = emptyKey;`

			`if (initiator) {`
			`session.hs = await this.initializeInitiator(prologue, s, rs, psk);`
			`} else {`
			`session.hs = await this.initializeResponder(prologue, s, rs, psk);`
			`}`

			`session.i = initiator;`
			`session.mc = 0;`
			`return session;`
			`}`
			`}`