mirror of
https://github.com/fluencelabs/js-libp2p
synced 2025-04-27 19:42:14 +00:00
fe2a8eddbb
* feat: add initial plaintext 2 module * refactor: initial refactor of pnet * chore: fix lint * fix: update plaintext api usage * test: use plaintext for test crypto * chore: update deps test: update dialer suite scope * feat: add connection protection to the upgrader * refactor: cleanup and lint fix * chore: remove unncessary transforms * chore: temporarily disable bundlesize * chore: add missing dep * fix: use it-handshake to prevent overreading * chore(fix): PR feedback updates * chore: apply suggestions from code review Co-Authored-By: Vasco Santos <vasco.santos@moxy.studio>
68 lines
1.8 KiB
JavaScript
68 lines
1.8 KiB
JavaScript
'use strict'
|
|
|
|
const handshake = require('it-handshake')
|
|
const lp = require('it-length-prefixed')
|
|
const PeerId = require('peer-id')
|
|
const debug = require('debug')
|
|
const log = debug('libp2p:plaintext')
|
|
log.error = debug('libp2p:plaintext:error')
|
|
const { UnexpectedPeerError, InvalidCryptoExchangeError } = require('libp2p-interfaces/src/crypto/errors')
|
|
|
|
const { Exchange, KeyType } = require('./proto')
|
|
const protocol = '/plaintext/2.0.0'
|
|
|
|
function lpEncodeExchange (exchange) {
|
|
const pb = Exchange.encode(exchange)
|
|
return lp.encode.single(pb)
|
|
}
|
|
|
|
async function encrypt (localId, conn, remoteId) {
|
|
const shake = handshake(conn)
|
|
|
|
// Encode the public key and write it to the remote peer
|
|
shake.write(lpEncodeExchange({
|
|
id: localId.toBytes(),
|
|
pubkey: {
|
|
Type: KeyType.RSA, // TODO: dont hard code
|
|
Data: localId.marshalPubKey()
|
|
}
|
|
}))
|
|
|
|
log('write pubkey exchange to peer %j', remoteId)
|
|
|
|
// Get the Exchange message
|
|
const response = (await lp.decodeFromReader(shake.reader).next()).value
|
|
const id = Exchange.decode(response.slice())
|
|
log('read pubkey exchange from peer %j', remoteId)
|
|
|
|
let peerId
|
|
try {
|
|
peerId = await PeerId.createFromPubKey(id.pubkey.Data)
|
|
} catch (err) {
|
|
log.error(err)
|
|
throw new InvalidCryptoExchangeError('Remote did not provide its public key')
|
|
}
|
|
|
|
if (remoteId && !peerId.isEqual(remoteId)) {
|
|
throw new UnexpectedPeerError()
|
|
}
|
|
|
|
log('plaintext key exchange completed successfully with peer %j', peerId)
|
|
|
|
shake.rest()
|
|
return {
|
|
conn: shake.stream,
|
|
remotePeer: peerId
|
|
}
|
|
}
|
|
|
|
module.exports = {
|
|
protocol,
|
|
secureInbound: (localId, conn, remoteId) => {
|
|
return encrypt(localId, conn, remoteId)
|
|
},
|
|
secureOutbound: (localId, conn, remoteId) => {
|
|
return encrypt(localId, conn, remoteId)
|
|
}
|
|
}
|