UNPKG

@chainsafe/libp2p-gossipsub

Version:

A typescript implementation of gossipsub

github.com/ChainSafe/js-libp2p-gossipsub

ChainSafe/js-libp2p-gossipsub

145 lines 6.31 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
import { randomBytes } from '@libp2p/crypto'; import { publicKeyFromProtobuf } from '@libp2p/crypto/keys'; import { StrictSign, StrictNoSign } from '@libp2p/interface'; import { peerIdFromMultihash } from '@libp2p/peer-id'; import * as Digest from 'multiformats/hashes/digest'; import { concat as uint8ArrayConcat } from 'uint8arrays/concat'; import { fromString as uint8ArrayFromString } from 'uint8arrays/from-string'; import { toString as uint8ArrayToString } from 'uint8arrays/to-string'; import { RPC } from '../message/rpc.js'; import { PublishConfigType, ValidateError } from '../types.js'; export const SignPrefix = uint8ArrayFromString('libp2p-pubsub:'); export async function buildRawMessage(publishConfig, topic, originalData, transformedData) { switch (publishConfig.type) { case PublishConfigType.Signing: { const rpcMsg = { from: publishConfig.author.toMultihash().bytes, data: transformedData, seqno: randomBytes(8), topic, signature: undefined, // Exclude signature field for signing key: undefined // Exclude key field for signing }; // Get the message in bytes, and prepend with the pubsub prefix // the signature is over the bytes "libp2p-pubsub:<protobuf-message>" const bytes = uint8ArrayConcat([SignPrefix, RPC.Message.encode(rpcMsg)]); rpcMsg.signature = await publishConfig.privateKey.sign(bytes); rpcMsg.key = publishConfig.key; const msg = { type: 'signed', from: publishConfig.author, data: originalData, sequenceNumber: BigInt(`0x${uint8ArrayToString(rpcMsg.seqno ?? new Uint8Array(0), 'base16')}`), topic, signature: rpcMsg.signature, key: publicKeyFromProtobuf(rpcMsg.key) }; return { raw: rpcMsg, msg }; } case PublishConfigType.Anonymous: { return { raw: { from: undefined, data: transformedData, seqno: undefined, topic, signature: undefined, key: undefined }, msg: { type: 'unsigned', data: originalData, topic } }; } default: throw new Error('Unreachable'); } } export async function validateToRawMessage(signaturePolicy, msg) { // If strict-sign, verify all // If anonymous (no-sign), ensure no preven switch (signaturePolicy) { case StrictNoSign: if (msg.signature != null) return { valid: false, error: ValidateError.SignaturePresent }; if (msg.seqno != null) return { valid: false, error: ValidateError.SeqnoPresent }; if (msg.key != null) return { valid: false, error: ValidateError.FromPresent }; return { valid: true, message: { type: 'unsigned', topic: msg.topic, data: msg.data ?? new Uint8Array(0) } }; case StrictSign: { // Verify seqno if (msg.seqno == null) return { valid: false, error: ValidateError.InvalidSeqno }; if (msg.seqno.length !== 8) { return { valid: false, error: ValidateError.InvalidSeqno }; } if (msg.signature == null) return { valid: false, error: ValidateError.InvalidSignature }; if (msg.from == null) return { valid: false, error: ValidateError.InvalidPeerId }; let fromPeerId; try { // TODO: Fix PeerId types fromPeerId = peerIdFromMultihash(Digest.decode(msg.from)); } catch (e) { return { valid: false, error: ValidateError.InvalidPeerId }; } // - check from defined // - transform source to PeerId // - parse signature // - get .key, else from source // - check key == source if present // - verify sig let publicKey; if (msg.key != null) { publicKey = publicKeyFromProtobuf(msg.key); // TODO: Should `fromPeerId.pubKey` be optional? if (fromPeerId.publicKey !== undefined && !publicKey.equals(fromPeerId.publicKey)) { return { valid: false, error: ValidateError.InvalidPeerId }; } } else { if (fromPeerId.publicKey == null) { return { valid: false, error: ValidateError.InvalidPeerId }; } publicKey = fromPeerId.publicKey; } const rpcMsgPreSign = { from: msg.from, data: msg.data, seqno: msg.seqno, topic: msg.topic, signature: undefined, // Exclude signature field for signing key: undefined // Exclude key field for signing }; // Get the message in bytes, and prepend with the pubsub prefix // the signature is over the bytes "libp2p-pubsub:<protobuf-message>" const bytes = uint8ArrayConcat([SignPrefix, RPC.Message.encode(rpcMsgPreSign)]); if (!(await publicKey.verify(bytes, msg.signature))) { return { valid: false, error: ValidateError.InvalidSignature }; } return { valid: true, message: { type: 'signed', from: fromPeerId, data: msg.data ?? new Uint8Array(0), sequenceNumber: BigInt(`0x${uint8ArrayToString(msg.seqno, 'base16')}`), topic: msg.topic, signature: msg.signature, key: msg.key != null ? publicKeyFromProtobuf(msg.key) : publicKey } }; } default: throw new Error('Unreachable'); } } //# sourceMappingURL=buildRawMessage.js.map