UNPKG

noise-handshake

Version:

Noise protocol handshake

github.com/holepunchto/noise-handshake

holepunchto/noise-handshake

96 lines (66 loc) 2.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
# noise-handshake ## Usage ```js const Noise = require('noise-handshake') const Cipher = require('noise-handshake/cipher') const initiator = new Noise('IK', true) const responder = new Noise('IK', false) const prologue = Buffer.alloc(0) // preshared key initiator.initialise(prologue, responder.s.publicKey) responder.initialise(prologue) // -> e, es, s, ss const message = initiator.send() responder.recv(message) // <- e, ee, se const reply = responder.send() initiator.recv(reply) console.log(initiator.complete) // true // convention is to use rx for // sending and tx for receiving // initiator.rx === responder.tx // responder.rx === initiator.tx // instantiate a cipher using shared secrets const send = new Cipher(initiator.tx) const recieve = new Cipher(responder.rx) const msg = Buffer.from('hello, world') const enc = send.encrypt(msg) console.log(recieve.decrypt(enc)) // hello, world ``` ## API #### `const peer = new Noise(pattern, initiator, staticKeypair, [opts])` Create a new handshake state for a given pattern. Initiator should be either `true` or `false` depending on the role. A preexisting keypair may be passed as `staticKeypair` `opts` may be used to pass in the following: - `curve`: module for performing Noise over other curves. - `psk`: a 32-byte buffer containing a pre-shared key for patterns containing `psk0`. (Other psk positions are not currently supported.) Curve modules should export the following: ``` { DHLEN, PKLEN, SKLEN, ALG, generateKeyPair, dh } ``` See [dh.js](./dh) for an example. #### `peer.initialise(prologue, remoteStatic)` Initialise the handshake state with a prologue and any preshared keys. #### `const buf = send([payload])` Send the next message in the handshake, add an optional payload buffer to be included in the message, payload is a zero length buffer by default. #### `const payload = peer.recv(buf)` Receive a handshake message from the peer and return the encrypted payload. #### `peer.complete` `true` or `false`. Indicates whether `rx` and `tx` have been created yet. When complete, the working handshake state shall be cleared *only* the following state shall remain on the object: ```js { tx, // session key to decrypt messages from remote peer rx, // session key to encrypt messages to remote peer rs, // the remote peer's public key, hash, // a hash of the entire handshake state } ``` ## License Apache-2.0