js-libp2p-noise/src/noise.ts

import { x25519 } from 'bcrypto';
import { Buffer } from "buffer";
import Wrap from 'it-pb-rpc';

import { Handshake } from "./handshake";
import { createHandshakePayload, generateKeypair, getHandshakePayload, signPayload } from "./utils";
import { decryptStreams, encryptStreams } from "./crypto";
import { bytes } from "./@types/basic";
import { NoiseConnection, PeerId, KeyPair, SecureOutbound } from "./@types/libp2p";
import { Duplex } from "./@types/it-pair";

export class Noise implements NoiseConnection {
  public protocol = "/noise";

  private readonly privateKey: bytes;
  private staticKeys: KeyPair;
  private earlyData?: bytes;

  constructor(privateKey: bytes, staticNoiseKey?: bytes, earlyData?: bytes) {
    this.privateKey = privateKey;
    this.earlyData = earlyData;

    if (staticNoiseKey) {
      const publicKey = x25519.publicKeyCreate(staticNoiseKey);
      this.staticKeys = {
        privateKey: staticNoiseKey,
        publicKey,
      }
    } else {
      // todo: generate new static key
    }
  }

  /**
   * Encrypt outgoing data to the remote party (handshake as initiator)
   * @param {PeerId} localPeer - PeerId of the receiving peer
   * @param connection - streaming iterable duplex that will be encrypted
   * @param {PeerId} remotePeer - PeerId of the remote peer. Used to validate the integrity of the remote peer.
   * @returns {Promise<SecureOutbound>}
   */
  public async secureOutbound(localPeer: PeerId, connection: any, remotePeer: PeerId) : Promise<SecureOutbound> {
    const wrappedConnection = Wrap(connection);
    const remotePublicKey = Buffer.from(remotePeer.pubKey);
    const session = await this.createSecureConnection(wrappedConnection, remotePublicKey, true);

    return {
      conn: session,
      remotePeer,
    }
  }

  /**
   * Decrypt incoming data (handshake as responder).
   * @param {PeerId} localPeer - PeerId of the receiving peer.
   * @param connection - streaming iterable duplex that will be encryption.
   * @param {PeerId} remotePeer - optional PeerId of the initiating peer, if known. This may only exist during transport upgrades.
   * @returns {Promise<SecureOutbound>}
   */
  public async secureInbound(localPeer: PeerId, connection: any, remotePeer?: PeerId) : Promise<SecureOutbound> {
  }

  private async createSecureConnection(
    connection,
    remotePublicKey: bytes,
    isInitiator: boolean,
    ) : Promise<Duplex> {
    if (!this.staticKeys) {
      this.staticKeys = await generateKeypair();
    }

    const prologue = Buffer.from(this.protocol);
    const handshake = new Handshake('XX', remotePublicKey, prologue, this.staticKeys, connection);

    const session = await handshake.propose(isInitiator, this.earlyData);
    await handshake.exchange(isInitiator, session);
    await handshake.finish(isInitiator, session);

    return await encryptStreams(connection, session);
  }


}
Expose noise class 2019-11-11 15:39:09 +01:00			`import { x25519 } from 'bcrypto';`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`import { Buffer } from "buffer";`
Wrap connection 2019-11-20 15:21:53 +01:00			`import Wrap from 'it-pb-rpc';`
Create skeleton 2019-11-08 14:03:34 +01:00
Create interface according to spec 2019-11-11 21:58:04 +01:00			`import { Handshake } from "./handshake";`
handshake propose 2019-11-20 22:52:08 +01:00			`import { createHandshakePayload, generateKeypair, getHandshakePayload, signPayload } from "./utils";`
Address PR comments 2019-11-20 13:23:36 +01:00			`import { decryptStreams, encryptStreams } from "./crypto";`
Wrap connection 2019-11-20 15:21:53 +01:00			`import { bytes } from "./@types/basic";`
			`import { NoiseConnection, PeerId, KeyPair, SecureOutbound } from "./@types/libp2p";`
			`import { Duplex } from "./@types/it-pair";`
Create interface according to spec 2019-11-11 21:58:04 +01:00
			`export class Noise implements NoiseConnection {`
Address PR comments 2019-11-20 13:23:36 +01:00			`public protocol = "/noise";`

Expose noise class 2019-11-11 15:39:09 +01:00			`private readonly privateKey: bytes;`
Add types and encryption methods 2019-11-12 14:02:59 +01:00			`private staticKeys: KeyPair;`
Expose noise class 2019-11-11 15:39:09 +01:00			`private earlyData?: bytes;`

Create skeleton 2019-11-08 14:03:34 +01:00			`constructor(privateKey: bytes, staticNoiseKey?: bytes, earlyData?: bytes) {`
Expose noise class 2019-11-11 15:39:09 +01:00			`this.privateKey = privateKey;`
			`this.earlyData = earlyData;`
Create skeleton 2019-11-08 14:03:34 +01:00
Expose noise class 2019-11-11 15:39:09 +01:00			`if (staticNoiseKey) {`
			`const publicKey = x25519.publicKeyCreate(staticNoiseKey);`
			`this.staticKeys = {`
			`privateKey: staticNoiseKey,`
			`publicKey,`
			`}`
Add types and encryption methods 2019-11-12 14:02:59 +01:00			`} else {`
			`// todo: generate new static key`
Expose noise class 2019-11-11 15:39:09 +01:00			`}`
Create skeleton 2019-11-08 14:03:34 +01:00			`}`

Address PR comments 2019-11-20 13:23:36 +01:00			`/**`
			`* Encrypt outgoing data to the remote party (handshake as initiator)`
			`* @param {PeerId} localPeer - PeerId of the receiving peer`
			`* @param connection - streaming iterable duplex that will be encrypted`
			`* @param {PeerId} remotePeer - PeerId of the remote peer. Used to validate the integrity of the remote peer.`
			`* @returns {Promise<SecureOutbound>}`
			`*/`
			`public async secureOutbound(localPeer: PeerId, connection: any, remotePeer: PeerId) : Promise<SecureOutbound> {`
Wrap connection 2019-11-20 15:21:53 +01:00			`const wrappedConnection = Wrap(connection);`
Address PR comments 2019-11-20 13:23:36 +01:00			`const remotePublicKey = Buffer.from(remotePeer.pubKey);`
Wrap connection 2019-11-20 15:21:53 +01:00			`const session = await this.createSecureConnection(wrappedConnection, remotePublicKey, true);`
Create interface according to spec 2019-11-11 21:58:04 +01:00
Address PR comments 2019-11-20 13:23:36 +01:00			`return {`
			`conn: session,`
			`remotePeer,`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`
			`}`

Address PR comments 2019-11-20 13:23:36 +01:00			`/**`
			`* Decrypt incoming data (handshake as responder).`
			`* @param {PeerId} localPeer - PeerId of the receiving peer.`
			`* @param connection - streaming iterable duplex that will be encryption.`
			`* @param {PeerId} remotePeer - optional PeerId of the initiating peer, if known. This may only exist during transport upgrades.`
			`* @returns {Promise<SecureOutbound>}`
			`*/`
			`public async secureInbound(localPeer: PeerId, connection: any, remotePeer?: PeerId) : Promise<SecureOutbound> {`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`}`

			`private async createSecureConnection(`
Wrap connection 2019-11-20 15:21:53 +01:00			`connection,`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`remotePublicKey: bytes,`
			`isInitiator: boolean,`
Address PR comments 2019-11-20 13:23:36 +01:00			`) : Promise<Duplex> {`
Expose noise class 2019-11-11 15:39:09 +01:00			`if (!this.staticKeys) {`
Create interface according to spec 2019-11-11 21:58:04 +01:00			`this.staticKeys = await generateKeypair();`
Expose noise class 2019-11-11 15:39:09 +01:00			`}`

Address PR comments 2019-11-20 13:23:36 +01:00			`const prologue = Buffer.from(this.protocol);`
Written handshake exchange 2019-11-21 13:38:39 +01:00			`const handshake = new Handshake('XX', remotePublicKey, prologue, this.staticKeys, connection);`

			`const session = await handshake.propose(isInitiator, this.earlyData);`
			`await handshake.exchange(isInitiator, session);`
			`await handshake.finish(isInitiator, session);`
Create interface according to spec 2019-11-11 21:58:04 +01:00
Address PR comments 2019-11-20 13:23:36 +01:00			`return await encryptStreams(connection, session);`
Create skeleton 2019-11-08 14:03:34 +01:00			`}`

Create interface according to spec 2019-11-11 21:58:04 +01:00
Create skeleton 2019-11-08 14:03:34 +01:00			`}`