js-libp2p-noise/src/handshake-xx.ts

import { Buffer } from "buffer";

import { XXHandshake } from "./handshakes/xx";
import { KeyPair, PeerId } from "./@types/libp2p";
import { bytes, bytes32 } from "./@types/basic";
import { NoiseSession } from "./@types/handshake";
import {HandshakeInterface} from "./@types/handshake-interface";
import {
  createHandshakePayload,
  getHandshakePayload,
  signEarlyDataPayload,
  signPayload,
  verifySignedPayload,
} from "./utils";
import { logger } from "./logger";
import { decodeMessageBuffer, encodeMessageBuffer } from "./encoder";
import { WrappedConnection } from "./noise";

export class Handshake implements HandshakeInterface {
  public isInitiator: boolean;
  public session: NoiseSession;

  private libp2pPrivateKey: bytes;
  private libp2pPublicKey: bytes;
  private prologue: bytes32;
  private staticKeys: KeyPair;
  private connection: WrappedConnection;
  private remotePeer: PeerId;
  private xx: XXHandshake;

  constructor(
    isInitiator: boolean,
    libp2pPrivateKey: bytes,
    libp2pPublicKey: bytes,
    prologue: bytes32,
    staticKeys: KeyPair,
    connection: WrappedConnection,
    remotePeer: PeerId,
    ephemeralKeys?: KeyPair,
    handshake?: XXHandshake,
  ) {
    this.isInitiator = isInitiator;
    this.libp2pPrivateKey = libp2pPrivateKey;
    this.libp2pPublicKey = libp2pPublicKey;
    this.prologue = prologue;
    this.staticKeys = staticKeys;
    this.connection = connection;
    this.remotePeer = remotePeer;

    this.xx = handshake || new XXHandshake();
    this.session = this.xx.initSession(this.isInitiator, this.prologue, this.staticKeys);
  }

  // stage 0
  public async propose(): Promise<void> {
    if (this.isInitiator) {
      logger("Stage 0 - Initiator starting to send first message.");
      const messageBuffer = this.xx.sendMessage(this.session, Buffer.alloc(0));
      this.connection.writeLP(encodeMessageBuffer(messageBuffer));
      logger("Stage 0 - Initiator finished sending first message.");
    } else {
      logger("Stage 0 - Responder waiting to receive first message...");
      const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
      this.xx.recvMessage(this.session, receivedMessageBuffer);
      logger("Stage 0 - Responder received first message.");
    }
  }

  // stage 1
  public async exchange(): Promise<void> {
    if (this.isInitiator) {
      logger('Stage 1 - Initiator waiting to receive first message from responder...');
      const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
      const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);
      logger('Stage 1 - Initiator received the message. Got remote\'s static key.');

      logger("Initiator going to check remote's signature...");
      try {
        await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);
      } catch (e) {
        throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
      }
      logger("All good with the signature!");
    } else {
      logger('Stage 1 - Responder sending out first message with signed payload and static key.');
      const signedPayload = signPayload(this.libp2pPrivateKey, getHandshakePayload(this.staticKeys.publicKey));
      const signedEarlyDataPayload = signEarlyDataPayload(this.libp2pPrivateKey, Buffer.alloc(0));
      const handshakePayload = await createHandshakePayload(
        this.libp2pPublicKey,
        this.libp2pPrivateKey,
        signedPayload,
        signedEarlyDataPayload,
      );

      const messageBuffer = this.xx.sendMessage(this.session, handshakePayload);
      this.connection.writeLP(encodeMessageBuffer(messageBuffer));
      logger('Stage 1 - Responder sent the second handshake message with signed payload.')
    }
  }

  // stage 2
  public async finish(earlyData?: bytes): Promise<void> {
    if (this.isInitiator) {
      logger('Stage 2 - Initiator sending third handshake message.');
      const signedPayload = signPayload(this.libp2pPrivateKey, getHandshakePayload(this.staticKeys.publicKey));
      const signedEarlyDataPayload = signEarlyDataPayload(this.libp2pPrivateKey, earlyData || Buffer.alloc(0));
      const handshakePayload = await createHandshakePayload(
        this.libp2pPublicKey,
        this.libp2pPrivateKey,
        signedPayload,
        signedEarlyDataPayload
      );
      const messageBuffer = this.xx.sendMessage(this.session, handshakePayload);
      this.connection.writeLP(encodeMessageBuffer(messageBuffer));
      logger('Stage 2 - Initiator sent message with signed payload.');
    } else {
      logger('Stage 2 - Responder waiting for third handshake message...');
      const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
      const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);
      logger('Stage 2 - Responder received the message, finished handshake. Got remote\'s static key.');

      try {
        await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);
      } catch (e) {
        throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
      }
    }
  }

  public encrypt(plaintext: bytes, session: NoiseSession): bytes {
    const cs = this.getCS(session);

    return this.xx.encryptWithAd(cs, Buffer.alloc(0), plaintext);
  }

  public decrypt(ciphertext: bytes, session: NoiseSession): bytes {
    const cs = this.getCS(session, false);
    return this.xx.decryptWithAd(cs, Buffer.alloc(0), ciphertext);
  }

  private getCS(session: NoiseSession, encryption = true) {
    if (!session.cs1 || !session.cs2) {
      throw new Error("Handshake not completed properly, cipher state does not exist.");
    }

    if (this.isInitiator) {
      return encryption ? session.cs1 : session.cs2;
    } else {
      return encryption ? session.cs2 : session.cs1;
    }
  }
}
Add debug 2019-11-27 08:39:06 +01:00			`import { Buffer } from "buffer";`

Move handshake types to separate file 2019-12-24 20:54:45 +01:00			`import { XXHandshake } from "./handshakes/xx";`
Verify peer id 2019-12-03 13:39:33 +01:00			`import { KeyPair, PeerId } from "./@types/libp2p";`
Move handshake types to separate file 2019-12-24 20:54:45 +01:00			`import { bytes, bytes32 } from "./@types/basic";`
			`import { NoiseSession } from "./@types/handshake";`
Create handshake interface to support performing different handshakes 2020-01-03 15:43:56 +01:00			`import {HandshakeInterface} from "./@types/handshake-interface";`
Write handshake test 2019-11-22 12:52:59 +01:00			`import {`
			`createHandshakePayload,`
			`getHandshakePayload,`
Verify peer id 2019-12-03 13:39:33 +01:00			`signEarlyDataPayload,`
			`signPayload,`
			`verifySignedPayload,`
Write handshake test 2019-11-22 12:52:59 +01:00			`} from "./utils";`
Separate logger from utils 2019-12-03 15:19:08 +01:00			`import { logger } from "./logger";`
Split encoder functions from utils 2019-12-03 15:15:46 +01:00			`import { decodeMessageBuffer, encodeMessageBuffer } from "./encoder";`
Add debug 2019-11-27 08:39:06 +01:00			`import { WrappedConnection } from "./noise";`
Address PR comments 2019-11-20 13:23:36 +01:00
Create handshake interface to support performing different handshakes 2020-01-03 15:43:56 +01:00			`export class Handshake implements HandshakeInterface {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`public isInitiator: boolean;`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`public session: NoiseSession;`
Write encryption generators 2019-11-25 13:09:40 +01:00
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`private libp2pPrivateKey: bytes;`
			`private libp2pPublicKey: bytes;`
Address PR comments 2019-11-20 13:23:36 +01:00			`private prologue: bytes32;`
			`private staticKeys: KeyPair;`
Write handshake test 2019-11-22 12:52:59 +01:00			`private connection: WrappedConnection;`
Verify peer id 2019-12-03 13:39:33 +01:00			`private remotePeer: PeerId;`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`private xx: XXHandshake;`
Address PR comments 2019-11-20 13:23:36 +01:00
			`constructor(`
Write encryption generators 2019-11-25 13:09:40 +01:00			`isInitiator: boolean,`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`libp2pPrivateKey: bytes,`
			`libp2pPublicKey: bytes,`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`prologue: bytes32,`
			`staticKeys: KeyPair,`
Write handshake test 2019-11-22 12:52:59 +01:00			`connection: WrappedConnection,`
Verify peer id 2019-12-03 13:39:33 +01:00			`remotePeer: PeerId,`
Create IK and read ephemeral keys 2020-01-03 17:28:13 +01:00			`ephemeralKeys?: KeyPair,`
Create test 2019-11-27 14:19:35 +01:00			`handshake?: XXHandshake,`
Address PR comments 2019-11-20 13:23:36 +01:00			`) {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`this.isInitiator = isInitiator;`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`this.libp2pPrivateKey = libp2pPrivateKey;`
			`this.libp2pPublicKey = libp2pPublicKey;`
Address PR comments 2019-11-20 13:23:36 +01:00			`this.prologue = prologue;`
			`this.staticKeys = staticKeys;`
handshake propose 2019-11-20 22:52:08 +01:00			`this.connection = connection;`
Verify peer id 2019-12-03 13:39:33 +01:00			`this.remotePeer = remotePeer;`
Written handshake exchange 2019-11-21 13:38:39 +01:00
Create test 2019-11-27 14:19:35 +01:00			`this.xx = handshake \|\| new XXHandshake();`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`this.session = this.xx.initSession(this.isInitiator, this.prologue, this.staticKeys);`
Address PR comments 2019-11-20 13:23:36 +01:00			`}`

handshake propose 2019-11-20 22:52:08 +01:00			`// stage 0`
Create handshake interface to support performing different handshakes 2020-01-03 15:43:56 +01:00			`public async propose(): Promise<void> {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`if (this.isInitiator) {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger("Stage 0 - Initiator starting to send first message.");`
Remove promises from xx 2019-12-03 15:12:55 +01:00			`const messageBuffer = this.xx.sendMessage(this.session, Buffer.alloc(0));`
Write handshake test 2019-11-22 12:52:59 +01:00			`this.connection.writeLP(encodeMessageBuffer(messageBuffer));`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`logger("Stage 0 - Initiator finished sending first message.");`
handshake propose 2019-11-20 22:52:08 +01:00			`} else {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger("Stage 0 - Responder waiting to receive first message...");`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());`
Remove promises from xx 2019-12-03 15:12:55 +01:00			`this.xx.recvMessage(this.session, receivedMessageBuffer);`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger("Stage 0 - Responder received first message.");`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`}`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`
Address PR comments 2019-11-20 13:23:36 +01:00
Fix tslint 2019-11-21 14:43:12 +01:00			`// stage 1`
Create handshake interface to support performing different handshakes 2020-01-03 15:43:56 +01:00			`public async exchange(): Promise<void> {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`if (this.isInitiator) {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger('Stage 1 - Initiator waiting to receive first message from responder...');`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());`
Remove promises from xx 2019-12-03 15:12:55 +01:00			`const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);`
Address PR comments 2019-12-02 10:48:19 +01:00			`logger('Stage 1 - Initiator received the message. Got remote\'s static key.');`
Write functions for verification 2019-12-02 12:53:00 +01:00
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`logger("Initiator going to check remote's signature...");`
Verify peer id 2019-12-03 13:39:33 +01:00			`try {`
			`await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);`
			`} catch (e) {`
			throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
			`}`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`logger("All good with the signature!");`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`} else {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger('Stage 1 - Responder sending out first message with signed payload and static key.');`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`const signedPayload = signPayload(this.libp2pPrivateKey, getHandshakePayload(this.staticKeys.publicKey));`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`const signedEarlyDataPayload = signEarlyDataPayload(this.libp2pPrivateKey, Buffer.alloc(0));`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`const handshakePayload = await createHandshakePayload(`
			`this.libp2pPublicKey,`
			`this.libp2pPrivateKey,`
			`signedPayload,`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`signedEarlyDataPayload,`
Update handling keys, refactoring 2019-11-28 17:32:46 +01:00			`);`
Address PR comments 2019-11-20 13:23:36 +01:00
Remove promises from xx 2019-12-03 15:12:55 +01:00			`const messageBuffer = this.xx.sendMessage(this.session, handshakePayload);`
Write handshake test 2019-11-22 12:52:59 +01:00			`this.connection.writeLP(encodeMessageBuffer(messageBuffer));`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`logger('Stage 1 - Responder sent the second handshake message with signed payload.')`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`}`
Address PR comments 2019-11-20 13:23:36 +01:00			`}`

Fix tslint 2019-11-21 14:43:12 +01:00			`// stage 2`
Create handshake interface to support performing different handshakes 2020-01-03 15:43:56 +01:00			`public async finish(earlyData?: bytes): Promise<void> {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`if (this.isInitiator) {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger('Stage 2 - Initiator sending third handshake message.');`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`const signedPayload = signPayload(this.libp2pPrivateKey, getHandshakePayload(this.staticKeys.publicKey));`
			`const signedEarlyDataPayload = signEarlyDataPayload(this.libp2pPrivateKey, earlyData \|\| Buffer.alloc(0));`
			`const handshakePayload = await createHandshakePayload(`
			`this.libp2pPublicKey,`
			`this.libp2pPrivateKey,`
			`signedPayload,`
			`signedEarlyDataPayload`
			`);`
Remove promises from xx 2019-12-03 15:12:55 +01:00			`const messageBuffer = this.xx.sendMessage(this.session, handshakePayload);`
Write handshake test 2019-11-22 12:52:59 +01:00			`this.connection.writeLP(encodeMessageBuffer(messageBuffer));`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`logger('Stage 2 - Initiator sent message with signed payload.');`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`} else {`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger('Stage 2 - Responder waiting for third handshake message...');`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00			`const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());`
Remove promises from xx 2019-12-03 15:12:55 +01:00			`const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);`
Log handshake steps 2019-12-02 11:24:30 +01:00			`logger('Stage 2 - Responder received the message, finished handshake. Got remote\'s static key.');`
Update timing of initiator payloading sending to verify that payload 2019-12-02 15:24:49 +01:00
Verify peer id 2019-12-03 13:39:33 +01:00			`try {`
			`await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);`
			`} catch (e) {`
			throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
			`}`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`}`
Address PR comments 2019-11-20 13:23:36 +01:00			`}`
Write encryption generators 2019-11-25 13:09:40 +01:00
Address PR comments 2019-12-02 10:48:19 +01:00			`public encrypt(plaintext: bytes, session: NoiseSession): bytes {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`const cs = this.getCS(session);`
Address PR comments 2019-12-02 10:48:19 +01:00
Write encryption generators 2019-11-25 13:09:40 +01:00			`return this.xx.encryptWithAd(cs, Buffer.alloc(0), plaintext);`
			`}`

Address PR comments 2019-12-02 10:48:19 +01:00			`public decrypt(ciphertext: bytes, session: NoiseSession): bytes {`
Write encryption generators 2019-11-25 13:09:40 +01:00			`const cs = this.getCS(session, false);`
			`return this.xx.decryptWithAd(cs, Buffer.alloc(0), ciphertext);`
			`}`

			`private getCS(session: NoiseSession, encryption = true) {`
			`if (!session.cs1 \|\| !session.cs2) {`
			`throw new Error("Handshake not completed properly, cipher state does not exist.");`
			`}`

			`if (this.isInitiator) {`
			`return encryption ? session.cs1 : session.cs2;`
			`} else {`
			`return encryption ? session.cs2 : session.cs1;`
			`}`
			`}`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`