js-libp2p-secio/src/handshake/exchange.js

'use strict'

const crypto = require('libp2p-crypto')
const debug = require('debug')
const fs = require('fs')
const path = require('path')
const protobuf = require('protocol-buffers')

const log = debug('libp2p:secio:2-exchange')
log.error = debug('libp2p:secio:2-exchange:error')

const pbm = protobuf(fs.readFileSync(path.join(__dirname, '../secio.proto')))

const support = require('../support')

// step 2. Exchange
// -- exchange (signed) ephemeral keys. verify signatures.
module.exports = function exchange (session, cb) {
  log('start')

  let genSharedKey
  let exchangeOut

  try {
    const eResult = crypto.generateEphemeralKeyPair(session.local.curveT)
    session.local.ephemeralPubKey = eResult.key
    genSharedKey = eResult.genSharedKey
    exchangeOut = makeExchange(session)
    log('exout', exchangeOut.toString('hex'))
  } catch (err) {
    log.error(err)
    return cb(err)
  }

  session.insecureLp.write(exchangeOut)
  session.insecureLp.once('data', (chunk) => {
    const exchangeIn = pbm.Exchange.decode(chunk)
    log('exIn', exchangeIn)
    try {
      verify(session, exchangeIn)
      keys(session, exchangeIn, genSharedKey)
      macAndCipher(session)
    } catch (err) {
      log.error(err)
      return cb(err)
    }

    log('2. exchange - finish')
    cb()
  })
}

function makeExchange (session) {
  log('make exchange')
  // Gather corpus to sign.
  const selectionOut = Buffer.concat([
    session.proposal.out,
    session.proposal.in,
    session.local.ephemeralPubKey
  ])
  const epubkey = session.local.ephemeralPubKey
  const signature = session.localKey.sign(selectionOut)

  log('exOut', epubkey, signature)

  return pbm.Exchange.encode({epubkey, signature})
}

function verify (session, exchangeIn) {
  log('2.1. verify')

  session.remote.ephemeralPubKey = exchangeIn.epubkey
  const selectionIn = Buffer.concat([
    session.proposal.in,
    session.proposal.out,
    session.remote.ephemeralPubKey
  ])

  const sigOk = session.remote.permanentPubKey.verify(selectionIn, exchangeIn.signature)

  if (!sigOk) {
    throw new Error('Bad signature')
  }

  log('2.1. verify - signature verified')
}

function keys (session, exchangeIn, genSharedKey) {
  log('2.2. keys')

  session.sharedSecret = genSharedKey(exchangeIn.epubkey)

  const keys = crypto.keyStretcher(session.local.cipherT, session.local.hashT, session.sharedSecret)

  // use random nonces to decide order.
  if (session.proposal.order > 0) {
    session.local.keys = keys.k1
    session.remote.keys = keys.k2
  } else if (session.proposal.order < 0) {
    // swap
    session.local.keys = keys.k2
    session.remote.keys = keys.k1
  } else {
		// we should've bailed before this. but if not, bail here.
    throw new Error('you are trying to talk to yourself')
  }

  log('2.2. keys - shared: %s\n\tlocal: %s\n\tremote: %s', session.sharedSecret, session.local.keys, session.remote.keys)
}

function macAndCipher (session) {
  log('2.3. mac + cipher')

  support.makeMacAndCipher(session.local)
  support.makeMacAndCipher(session.remote)
}
More implementation 2016-05-22 01:03:53 +02:00			`'use strict'`

			`const crypto = require('libp2p-crypto')`
			`const debug = require('debug')`
some cleanup 2016-05-22 01:33:50 +02:00			`const fs = require('fs')`
			`const path = require('path')`
start stream handling 2016-05-22 13:19:17 +02:00			`const protobuf = require('protocol-buffers')`
some cleanup 2016-05-22 01:33:50 +02:00
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`const log = debug('libp2p:secio:2-exchange')`
			`log.error = debug('libp2p:secio:2-exchange:error')`
More implementation 2016-05-22 01:03:53 +02:00
some cleanup 2016-05-22 01:33:50 +02:00			`const pbm = protobuf(fs.readFileSync(path.join(__dirname, '../secio.proto')))`

more details 2016-05-22 01:31:00 +02:00			`const support = require('../support')`

start async handling 2016-05-22 18:36:31 +02:00			`// step 2. Exchange`
			`// -- exchange (signed) ephemeral keys. verify signatures.`
			`module.exports = function exchange (session, cb) {`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`log('start')`

			`let genSharedKey`
			`let exchangeOut`
More implementation 2016-05-22 01:03:53 +02:00
start async handling 2016-05-22 18:36:31 +02:00			`try {`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`const eResult = crypto.generateEphemeralKeyPair(session.local.curveT)`
			`session.local.ephemeralPubKey = eResult.key`
			`genSharedKey = eResult.genSharedKey`
			`exchangeOut = makeExchange(session)`
			`log('exout', exchangeOut.toString('hex'))`
start async handling 2016-05-22 18:36:31 +02:00			`} catch (err) {`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`log.error(err)`
start async handling 2016-05-22 18:36:31 +02:00			`return cb(err)`
			`}`

			`session.insecureLp.write(exchangeOut)`
			`session.insecureLp.once('data', (chunk) => {`
			`const exchangeIn = pbm.Exchange.decode(chunk)`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`log('exIn', exchangeIn)`
start async handling 2016-05-22 18:36:31 +02:00			`try {`
			`verify(session, exchangeIn)`
			`keys(session, exchangeIn, genSharedKey)`
			`macAndCipher(session)`
			`} catch (err) {`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`log.error(err)`
start async handling 2016-05-22 18:36:31 +02:00			`return cb(err)`
			`}`

			`log('2. exchange - finish')`
			`cb()`
			`})`
			`}`
More implementation 2016-05-22 01:03:53 +02:00
start async handling 2016-05-22 18:36:31 +02:00			`function makeExchange (session) {`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`log('make exchange')`
More implementation 2016-05-22 01:03:53 +02:00			`// Gather corpus to sign.`
			`const selectionOut = Buffer.concat([`
start async handling 2016-05-22 18:36:31 +02:00			`session.proposal.out,`
			`session.proposal.in,`
More implementation 2016-05-22 01:03:53 +02:00			`session.local.ephemeralPubKey`
			`])`
Add base line test and fix issues with handshaking 2016-05-22 22:39:36 +02:00			`const epubkey = session.local.ephemeralPubKey`
			`const signature = session.localKey.sign(selectionOut)`

			`log('exOut', epubkey, signature)`

			`return pbm.Exchange.encode({epubkey, signature})`
start async handling 2016-05-22 18:36:31 +02:00			`}`
More implementation 2016-05-22 01:03:53 +02:00
start async handling 2016-05-22 18:36:31 +02:00			`function verify (session, exchangeIn) {`
More implementation 2016-05-22 01:03:53 +02:00			`log('2.1. verify')`

			`session.remote.ephemeralPubKey = exchangeIn.epubkey`
			`const selectionIn = Buffer.concat([`
start async handling 2016-05-22 18:36:31 +02:00			`session.proposal.in,`
			`session.proposal.out,`
More implementation 2016-05-22 01:03:53 +02:00			`session.remote.ephemeralPubKey`
			`])`

			`const sigOk = session.remote.permanentPubKey.verify(selectionIn, exchangeIn.signature)`

			`if (!sigOk) {`
			`throw new Error('Bad signature')`
			`}`

			`log('2.1. verify - signature verified')`
start async handling 2016-05-22 18:36:31 +02:00			`}`
More implementation 2016-05-22 01:03:53 +02:00
start async handling 2016-05-22 18:36:31 +02:00			`function keys (session, exchangeIn, genSharedKey) {`
More implementation 2016-05-22 01:03:53 +02:00			`log('2.2. keys')`

			`session.sharedSecret = genSharedKey(exchangeIn.epubkey)`

			`const keys = crypto.keyStretcher(session.local.cipherT, session.local.hashT, session.sharedSecret)`

			`// use random nonces to decide order.`
start async handling 2016-05-22 18:36:31 +02:00			`if (session.proposal.order > 0) {`
More implementation 2016-05-22 01:03:53 +02:00			`session.local.keys = keys.k1`
			`session.remote.keys = keys.k2`
start async handling 2016-05-22 18:36:31 +02:00			`} else if (session.proposal.order < 0) {`
More implementation 2016-05-22 01:03:53 +02:00			`// swap`
			`session.local.keys = keys.k2`
			`session.remote.keys = keys.k1`
			`} else {`
			`// we should've bailed before this. but if not, bail here.`
			`throw new Error('you are trying to talk to yourself')`
			`}`

			`log('2.2. keys - shared: %s\n\tlocal: %s\n\tremote: %s', session.sharedSecret, session.local.keys, session.remote.keys)`
start async handling 2016-05-22 18:36:31 +02:00			`}`
More implementation 2016-05-22 01:03:53 +02:00
start async handling 2016-05-22 18:36:31 +02:00			`function macAndCipher (session) {`
More implementation 2016-05-22 01:03:53 +02:00			`log('2.3. mac + cipher')`

more details 2016-05-22 01:31:00 +02:00			`support.makeMacAndCipher(session.local)`
			`support.makeMacAndCipher(session.remote)`
More implementation 2016-05-22 01:03:53 +02:00			`}`