mirror of
https://github.com/fluencelabs/js-libp2p-noise
synced 2025-06-12 13:31:28 +00:00
127 lines
4.6 KiB
TypeScript
127 lines
4.6 KiB
TypeScript
import { Buffer } from "buffer";
|
|
|
|
import { XXHandshake } from "./handshakes/xx";
|
|
import { KeyPair, PeerId } from "./@types/libp2p";
|
|
import { bytes, bytes32 } from "./@types/basic";
|
|
import { NoiseSession } from "./@types/handshake";
|
|
import {
|
|
verifySignedPayload,
|
|
} from "./utils";
|
|
import { logger } from "./logger";
|
|
import { decodeMessageBuffer, encodeMessageBuffer } from "./encoder";
|
|
import { WrappedConnection } from "./noise";
|
|
|
|
export class Handshake {
|
|
public isInitiator: boolean;
|
|
public session: NoiseSession;
|
|
|
|
private payload: bytes;
|
|
private prologue: bytes32;
|
|
private staticKeys: KeyPair;
|
|
private connection: WrappedConnection;
|
|
private remotePeer: PeerId;
|
|
private xx: XXHandshake;
|
|
|
|
constructor(
|
|
isInitiator: boolean,
|
|
payload: bytes,
|
|
prologue: bytes32,
|
|
staticKeys: KeyPair,
|
|
connection: WrappedConnection,
|
|
remotePeer: PeerId,
|
|
handshake?: XXHandshake,
|
|
) {
|
|
this.isInitiator = isInitiator;
|
|
this.payload = payload;
|
|
this.prologue = prologue;
|
|
this.staticKeys = staticKeys;
|
|
this.connection = connection;
|
|
this.remotePeer = remotePeer;
|
|
|
|
this.xx = handshake || new XXHandshake();
|
|
this.session = this.xx.initSession(this.isInitiator, this.prologue, this.staticKeys);
|
|
}
|
|
|
|
// stage 0
|
|
async propose(): Promise<void> {
|
|
if (this.isInitiator) {
|
|
logger("Stage 0 - Initiator starting to send first message.");
|
|
const messageBuffer = this.xx.sendMessage(this.session, Buffer.alloc(0));
|
|
this.connection.writeLP(encodeMessageBuffer(messageBuffer));
|
|
logger("Stage 0 - Initiator finished sending first message.");
|
|
} else {
|
|
logger("Stage 0 - Responder waiting to receive first message...");
|
|
const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
|
|
this.xx.recvMessage(this.session, receivedMessageBuffer);
|
|
logger("Stage 0 - Responder received first message.");
|
|
}
|
|
}
|
|
|
|
// stage 1
|
|
async exchange(): Promise<void> {
|
|
if (this.isInitiator) {
|
|
logger('Stage 1 - Initiator waiting to receive first message from responder...');
|
|
const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
|
|
const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);
|
|
logger('Stage 1 - Initiator received the message. Got remote\'s static key.');
|
|
|
|
logger("Initiator going to check remote's signature...");
|
|
try {
|
|
await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);
|
|
} catch (e) {
|
|
throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
|
|
}
|
|
logger("All good with the signature!");
|
|
} else {
|
|
logger('Stage 1 - Responder sending out first message with signed payload and static key.');
|
|
const messageBuffer = this.xx.sendMessage(this.session, this.payload);
|
|
this.connection.writeLP(encodeMessageBuffer(messageBuffer));
|
|
logger('Stage 1 - Responder sent the second handshake message with signed payload.')
|
|
}
|
|
}
|
|
|
|
// stage 2
|
|
async finish(): Promise<void> {
|
|
if (this.isInitiator) {
|
|
logger('Stage 2 - Initiator sending third handshake message.');
|
|
const messageBuffer = this.xx.sendMessage(this.session, this.payload);
|
|
this.connection.writeLP(encodeMessageBuffer(messageBuffer));
|
|
logger('Stage 2 - Initiator sent message with signed payload.');
|
|
} else {
|
|
logger('Stage 2 - Responder waiting for third handshake message...');
|
|
const receivedMessageBuffer = decodeMessageBuffer((await this.connection.readLP()).slice());
|
|
const plaintext = this.xx.recvMessage(this.session, receivedMessageBuffer);
|
|
logger('Stage 2 - Responder received the message, finished handshake. Got remote\'s static key.');
|
|
|
|
try {
|
|
await verifySignedPayload(receivedMessageBuffer.ns, plaintext, this.remotePeer.id);
|
|
} catch (e) {
|
|
throw new Error(`Error occurred while verifying signed payload: ${e.message}`);
|
|
}
|
|
}
|
|
}
|
|
|
|
public encrypt(plaintext: bytes, session: NoiseSession): bytes {
|
|
const cs = this.getCS(session);
|
|
|
|
return this.xx.encryptWithAd(cs, Buffer.alloc(0), plaintext);
|
|
}
|
|
|
|
public decrypt(ciphertext: bytes, session: NoiseSession): bytes {
|
|
const cs = this.getCS(session, false);
|
|
return this.xx.decryptWithAd(cs, Buffer.alloc(0), ciphertext);
|
|
}
|
|
|
|
private getCS(session: NoiseSession, encryption = true) {
|
|
if (!session.cs1 || !session.cs2) {
|
|
throw new Error("Handshake not completed properly, cipher state does not exist.");
|
|
}
|
|
|
|
if (this.isInitiator) {
|
|
return encryption ? session.cs1 : session.cs2;
|
|
} else {
|
|
return encryption ? session.cs2 : session.cs1;
|
|
}
|
|
}
|
|
}
|