secure-peer
Version:
peer-to-peer encrypted streams using public key cryptography and signing
71 lines (56 loc) • 1.76 kB
JavaScript
var test = require('tap').test;
var keys = {
a : require('./keys/a.json'),
b : require('./keys/b.json'),
};
var secure = require('../');
var peer = {
a : secure(keys.a),
b : secure(keys.b),
};
var through = require('through');
test('mitm end attack', function (t) {
t.plan(5);
var bufNum = 0;
var attacker = through(function (buf) {
if (!Buffer.isBuffer(buf)) buf = Buffer(buf);
if (++bufNum === 6) this.emit('data', '[""]\n');
else this.emit('data', buf);
});
var a = peer.a(function (stream) {
stream.pipe(through(function (buf) {
for (var i = 0; i < buf.length; i++) {
this.emit('data', String(buf.slice(i, i + 1)).toUpperCase());
}
})).pipe(stream);
});
var b = peer.b(function (stream) {
var data = '';
stream.on('data', function (buf) { data += buf });
stream.on('end', function () {
t.fail('should have been destroyed');
});
stream.on('close', function () {
t.ok(true, 'socket closed for tampering');
t.equal(data, 'BEEP');
});
stream.write('beep');
stream.write(' ');
stream.end('boop');
});
b.on('end', function () {
t.fail('outer stream should have been destroyed');
});
b.on('close', function () {
t.ok(true, 'outer stream closed');
});
a.on('identify', function (id) {
t.equal(id.key.public, keys.b.public);
id.accept();
});
b.on('identify', function (id) {
t.equal(id.key.public, keys.a.public);
id.accept();
});
a.pipe(attacker).pipe(b).pipe(a);
});