chore: update protons and peer collections (#172)

mpetrunic · web-flow · commit 3ea9f33cc198 · 2022-08-02T16:13:38.000+02:00
* chore: update protons and peer collections

* update it-pb-stream and it-length-prefixed

* stop slicing data during encryption

* remove slicing

* remove unused deps
diff --git a/package.json b/package.json
@@ -77,25 +77,23 @@
     "@stablelib/hkdf": "^1.0.1",
     "@stablelib/sha256": "^1.0.1",
     "@stablelib/x25519": "^1.0.1",
-    "it-length-prefixed": "^7.0.1",
+    "it-length-prefixed": "^8.0.2",
     "it-pair": "^2.0.2",
-    "it-pb-stream": "^1.0.2",
+    "it-pb-stream": "^2.0.1",
     "it-pipe": "^2.0.3",
-    "protons-runtime": "^1.0.3",
-    "uint8arraylist": "^1.4.0",
+    "it-stream-types": "^1.0.4",
+    "protons-runtime": "^2.0.1",
+    "uint8arraylist": "^2.0.0",
     "uint8arrays": "^3.0.0"
   },
   "devDependencies": {
     "@libp2p/interface-connection-encrypter-compliance-tests": "^1.0.1",
     "@libp2p/peer-id-factory": "^1.0.8",
     "aegir": "^37.3.0",
     "benchmark": "^2.1.4",
-    "events": "^3.3.0",
-    "microtime": "^3.0.0",
     "mkdirp": "^1.0.4",
-    "protons": "^3.0.3",
-    "sinon": "^14.0.0",
-    "util": "^0.12.4"
+    "protons": "^4.0.0",
+    "sinon": "^14.0.0"
   },
   "browser": {
     "./dist/src/alloc-unsafe.js": "./dist/src/alloc-unsafe-browser.js",
diff --git a/src/crypto/stablelib.ts b/src/crypto/stablelib.ts
@@ -17,9 +17,9 @@ export const stablelib: ICryptoInterface = {
     const okmU8Array = hkdf.expand(96)
     const okm = okmU8Array
 
-    const k1 = okm.slice(0, 32)
-    const k2 = okm.slice(32, 64)
-    const k3 = okm.slice(64, 96)
+    const k1 = okm.subarray(0, 32)
+    const k2 = okm.subarray(32, 64)
+    const k3 = okm.subarray(64, 96)
 
     return [k1, k2, k3]
   },
diff --git a/src/crypto/streaming.ts b/src/crypto/streaming.ts
@@ -1,4 +1,5 @@
 import type { Transform } from 'it-stream-types'
+import type { Uint8ArrayList } from 'uint8arraylist'
 import type { IHandshake } from '../@types/handshake-interface.js'
 import { NOISE_MSG_MAX_LENGTH_BYTES, NOISE_MSG_MAX_LENGTH_BYTES_WITHOUT_TAG } from '../constants.js'
 
@@ -12,15 +13,15 @@ export function encryptStream (handshake: IHandshake): Transform<Uint8Array> {
           end = chunk.length
         }
 
-        const data = handshake.encrypt(chunk.slice(i, end), handshake.session)
+        const data = handshake.encrypt(chunk.subarray(i, end), handshake.session)
         yield data
       }
     }
   }
 }
 
 // Decrypt received payload to the user
-export function decryptStream (handshake: IHandshake): Transform<Uint8Array> {
+export function decryptStream (handshake: IHandshake): Transform<Uint8Array|Uint8ArrayList> {
   return async function * (source) {
     for await (const chunk of source) {
       for (let i = 0; i < chunk.length; i += NOISE_MSG_MAX_LENGTH_BYTES) {
@@ -29,7 +30,7 @@ export function decryptStream (handshake: IHandshake): Transform<Uint8Array> {
           end = chunk.length
         }
 
-        const { plaintext: decrypted, valid } = await handshake.decrypt(chunk.slice(i, end), handshake.session)
+        const { plaintext: decrypted, valid } = await handshake.decrypt(chunk.subarray(i, end), handshake.session)
         if (!valid) {
           throw new Error('Failed to validate decrypted chunk')
         }
diff --git a/src/encoder.ts b/src/encoder.ts
@@ -2,6 +2,7 @@ import { concat as uint8ArrayConcat } from 'uint8arrays/concat'
 import type { Uint8ArrayList } from 'uint8arraylist'
 import type { bytes } from './@types/basic.js'
 import type { MessageBuffer } from './@types/handshake.js'
+import type { LengthDecoderFunction, LengthEncoderFunction } from 'it-length-prefixed'
 
 const allocUnsafe = (len: number): Uint8Array => {
   if (globalThis.Buffer) {
@@ -11,14 +12,14 @@ const allocUnsafe = (len: number): Uint8Array => {
   return new Uint8Array(len)
 }
 
-export const uint16BEEncode = (value: number, target?: Uint8Array, offset?: number): Uint8Array => {
-  target = target ?? allocUnsafe(2)
-  new DataView(target.buffer, target.byteOffset, target.byteLength).setUint16(offset ?? 0, value, false)
+export const uint16BEEncode: LengthEncoderFunction = (value: number) => {
+  const target = allocUnsafe(2)
+  new DataView(target.buffer, target.byteOffset, target.byteLength).setUint16(0, value, false)
   return target
 }
 uint16BEEncode.bytes = 2
 
-export const uint16BEDecode = (data: Uint8Array | Uint8ArrayList): number => {
+export const uint16BEDecode: LengthDecoderFunction = (data: Uint8Array | Uint8ArrayList): number => {
   if (data.length < 2) throw RangeError('Could not decode int16BE')
 
   if (data instanceof Uint8Array) {
@@ -49,8 +50,8 @@ export function decode0 (input: bytes): MessageBuffer {
   }
 
   return {
-    ne: input.slice(0, 32),
-    ciphertext: input.slice(32, input.length),
+    ne: input.subarray(0, 32),
+    ciphertext: input.subarray(32, input.length),
     ns: new Uint8Array(0)
   }
 }
@@ -61,9 +62,9 @@ export function decode1 (input: bytes): MessageBuffer {
   }
 
   return {
-    ne: input.slice(0, 32),
-    ns: input.slice(32, 80),
-    ciphertext: input.slice(80, input.length)
+    ne: input.subarray(0, 32),
+    ns: input.subarray(32, 80),
+    ciphertext: input.subarray(80, input.length)
   }
 }
 
@@ -74,7 +75,7 @@ export function decode2 (input: bytes): MessageBuffer {
 
   return {
     ne: new Uint8Array(0),
-    ns: input.slice(0, 48),
-    ciphertext: input.slice(48, input.length)
+    ns: input.subarray(0, 48),
+    ciphertext: input.subarray(48, input.length)
   }
 }
diff --git a/src/handshake-ik.ts b/src/handshake-ik.ts
@@ -83,7 +83,7 @@ export class IKHandshake implements IHandshake {
         const err = e as Error
         logger('Responder breaking up with IK handshake in stage 0.')
 
-        throw new FailedIKError(receivedMsg, `Error occurred while verifying initiator's signed payload: ${err.message}`)
+        throw new FailedIKError(receivedMsg.slice(), `Error occurred while verifying initiator's signed payload: ${err.message}`)
       }
     }
   }
diff --git a/src/handshake-xx.ts b/src/handshake-xx.ts
@@ -69,7 +69,7 @@ export class XXHandshake implements IHandshake {
       logLocalEphemeralKeys(this.session.hs.e)
     } else {
       logger('Stage 0 - Responder waiting to receive first message...')
-      const receivedMessageBuffer = decode0((await this.connection.readLP()).slice())
+      const receivedMessageBuffer = decode0((await this.connection.readLP()).subarray())
       const { valid } = this.xx.recvMessage(this.session, receivedMessageBuffer)
       if (!valid) {
         throw new InvalidCryptoExchangeError('xx handshake stage 0 validation fail')
@@ -83,7 +83,7 @@ export class XXHandshake implements IHandshake {
   public async exchange (): Promise<void> {
     if (this.isInitiator) {
       logger('Stage 1 - Initiator waiting to receive first message from responder...')
-      const receivedMessageBuffer = decode1((await this.connection.readLP()).slice())
+      const receivedMessageBuffer = decode1((await this.connection.readLP()).subarray())
       const { plaintext, valid } = this.xx.recvMessage(this.session, receivedMessageBuffer)
       if (!valid) {
         throw new InvalidCryptoExchangeError('xx handshake stage 1 validation fail')
@@ -121,7 +121,7 @@ export class XXHandshake implements IHandshake {
       logger('Stage 2 - Initiator sent message with signed payload.')
     } else {
       logger('Stage 2 - Responder waiting for third handshake message...')
-      const receivedMessageBuffer = decode2((await this.connection.readLP()).slice())
+      const receivedMessageBuffer = decode2((await this.connection.readLP()).subarray())
       const { plaintext, valid } = this.xx.recvMessage(this.session, receivedMessageBuffer)
       if (!valid) {
         throw new InvalidCryptoExchangeError('xx handshake stage 2 validation fail')
diff --git a/src/handshakes/abstract-handshake.ts b/src/handshakes/abstract-handshake.ts
@@ -98,7 +98,7 @@ export abstract class AbstractHandshake {
         return derivedU8
       }
 
-      return derivedU8.slice(0, 32)
+      return derivedU8.subarray(0, 32)
     } catch (e) {
       const err = e as Error
       logger(err.message)
diff --git a/src/proto/payload.ts b/src/proto/payload.ts
@@ -3,6 +3,7 @@
 
 import { encodeMessage, decodeMessage, message, bytes } from 'protons-runtime'
 import type { Codec } from 'protons-runtime'
+import type { Uint8ArrayList } from 'uint8arraylist'
 
 export namespace pb {
   export interface NoiseHandshakePayload {
@@ -20,11 +21,11 @@ export namespace pb {
       })
     }
 
-    export const encode = (obj: NoiseHandshakePayload): Uint8Array => {
+    export const encode = (obj: NoiseHandshakePayload): Uint8ArrayList => {
       return encodeMessage(obj, NoiseHandshakePayload.codec())
     }
 
-    export const decode = (buf: Uint8Array): NoiseHandshakePayload => {
+    export const decode = (buf: Uint8Array | Uint8ArrayList): NoiseHandshakePayload => {
       return decodeMessage(buf, NoiseHandshakePayload.codec())
     }
   }
diff --git a/src/utils.ts b/src/utils.ts
@@ -36,7 +36,7 @@ export function createHandshakePayload (
     identityKey: libp2pPublicKey,
     identitySig: signedPayload,
     data: earlyData ?? new Uint8Array(0)
-  })
+  }).subarray()
 }
 
 export async function signPayload (peerId: PeerId, payload: bytes): Promise<bytes> {
diff --git a/test/noise.spec.ts b/test/noise.spec.ts
@@ -6,7 +6,7 @@ import { duplexPair } from 'it-pair/duplex'
 import { pbStream } from 'it-pb-stream'
 import { equals as uint8ArrayEquals } from 'uint8arrays/equals'
 import { toString as uint8ArrayToString } from 'uint8arrays/to-string'
-import { Uint8ArrayList } from 'uint8arraylist'
+import { fromString as uint8ArrayFromString } from 'uint8arrays/from-string'
 import sinon from 'sinon'
 import { NOISE_MSG_MAX_LENGTH_BYTES } from '../src/constants.js'
 import { stablelib } from '../src/crypto/stablelib.js'
@@ -95,23 +95,15 @@ describe('Noise', () => {
       })()
     ])
 
-    try {
-      const wrappedOutbound = pbStream(outbound.conn)
-      wrappedOutbound.write(new Uint8ArrayList(Buffer.from('test')))
-
-      // Check that noise message is prefixed with 16-bit big-endian unsigned integer
-      const receivedEncryptedPayload = (await wrapped.read()).slice()
-      const view = new DataView(receivedEncryptedPayload.buffer, receivedEncryptedPayload.byteOffset, receivedEncryptedPayload.byteLength)
-      const dataLength = view.getInt16(0)
-      const data = receivedEncryptedPayload.slice(2, dataLength + 2)
-      const { plaintext: decrypted, valid } = handshake.decrypt(data, handshake.session)
-      // Decrypted data should match
-      assert(uint8ArrayEquals(decrypted, Buffer.from('test')))
-      assert(valid)
-    } catch (e) {
-      const err = e as Error
-      assert(false, err.message)
-    }
+    const wrappedOutbound = pbStream(outbound.conn)
+    wrappedOutbound.write(uint8ArrayFromString('test'))
+
+    // Check that noise message is prefixed with 16-bit big-endian unsigned integer
+    const data = await (await wrapped.readLP()).slice()
+    const { plaintext: decrypted, valid } = handshake.decrypt(data, handshake.session)
+    // Decrypted data should match
+    expect(uint8ArrayEquals(decrypted, uint8ArrayFromString('test'))).to.be.true()
+    expect(valid).to.be.true()
   })
 
   it('should test large payloads', async function () {
diff --git a/test/utils.ts b/test/utils.ts
@@ -1,7 +1,6 @@
 import { keys } from '@libp2p/crypto'
 import type { PrivateKey } from '@libp2p/interface-keys'
 import type { PeerId } from '@libp2p/interface-peer-id'
-import { Buffer } from 'buffer'
 import type { KeyPair } from '../src/@types/libp2p.js'
 
 export async function generateEd25519Keys (): Promise<PrivateKey> {
@@ -14,7 +13,7 @@ export function getKeyPairFromPeerId (peerId: PeerId): KeyPair {
   }
 
   return {
-    privateKey: Buffer.from(peerId.privateKey.slice(0, 32)),
-    publicKey: Buffer.from(peerId.publicKey)
+    privateKey: peerId.privateKey.subarray(0, 32),
+    publicKey: peerId.publicKey
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`	`1`	`import type { Transform } from 'it-stream-types'`
	`2`	`+import type { Uint8ArrayList } from 'uint8arraylist'`
`2`	`3`	`import type { IHandshake } from '../@types/handshake-interface.js'`
`3`	`4`	`import { NOISE_MSG_MAX_LENGTH_BYTES, NOISE_MSG_MAX_LENGTH_BYTES_WITHOUT_TAG } from '../constants.js'`
`4`	`5`
`@@ -12,15 +13,15 @@ export function encryptStream (handshake: IHandshake): Transform<Uint8Array> {`
`12`	`13`	`end = chunk.length`
`13`	`14`	`}`
`14`	`15`
`15`		`- const data = handshake.encrypt(chunk.slice(i, end), handshake.session)`
	`16`	`+ const data = handshake.encrypt(chunk.subarray(i, end), handshake.session)`
`16`	`17`	`yield data`
`17`	`18`	`}`
`18`	`19`	`}`
`19`	`20`	`}`
`20`	`21`	`}`
`21`	`22`
`22`	`23`	`// Decrypt received payload to the user`
`23`		`-export function decryptStream (handshake: IHandshake): Transform<Uint8Array> {`
	`24`	`+export function decryptStream (handshake: IHandshake): Transform<Uint8Array\|Uint8ArrayList> {`
`24`	`25`	`return async function * (source) {`
`25`	`26`	`for await (const chunk of source) {`
`26`	`27`	`for (let i = 0; i < chunk.length; i += NOISE_MSG_MAX_LENGTH_BYTES) {`
`@@ -29,7 +30,7 @@ export function decryptStream (handshake: IHandshake): Transform<Uint8Array> {`
`29`	`30`	`end = chunk.length`
`30`	`31`	`}`
`31`	`32`
`32`		`- const { plaintext: decrypted, valid } = await handshake.decrypt(chunk.slice(i, end), handshake.session)`
	`33`	`+ const { plaintext: decrypted, valid } = await handshake.decrypt(chunk.subarray(i, end), handshake.session)`
`33`	`34`	`if (!valid) {`
`34`	`35`	`throw new Error('Failed to validate decrypted chunk')`
`35`	`36`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@ import { concat as uint8ArrayConcat } from 'uint8arrays/concat'`
`2`	`2`	`import type { Uint8ArrayList } from 'uint8arraylist'`
`3`	`3`	`import type { bytes } from './@types/basic.js'`
`4`	`4`	`import type { MessageBuffer } from './@types/handshake.js'`
	`5`	`+import type { LengthDecoderFunction, LengthEncoderFunction } from 'it-length-prefixed'`
`5`	`6`
`6`	`7`	`const allocUnsafe = (len: number): Uint8Array => {`
`7`	`8`	`if (globalThis.Buffer) {`
`@@ -11,14 +12,14 @@ const allocUnsafe = (len: number): Uint8Array => {`
`11`	`12`	`return new Uint8Array(len)`
`12`	`13`	`}`
`13`	`14`
`14`		`-export const uint16BEEncode = (value: number, target?: Uint8Array, offset?: number): Uint8Array => {`
`15`		`- target = target ?? allocUnsafe(2)`
`16`		`- new DataView(target.buffer, target.byteOffset, target.byteLength).setUint16(offset ?? 0, value, false)`
	`15`	`+export const uint16BEEncode: LengthEncoderFunction = (value: number) => {`
	`16`	`+ const target = allocUnsafe(2)`
	`17`	`+ new DataView(target.buffer, target.byteOffset, target.byteLength).setUint16(0, value, false)`
`17`	`18`	`return target`
`18`	`19`	`}`
`19`	`20`	`uint16BEEncode.bytes = 2`
`20`	`21`
`21`		`-export const uint16BEDecode = (data: Uint8Array \| Uint8ArrayList): number => {`
	`22`	`+export const uint16BEDecode: LengthDecoderFunction = (data: Uint8Array \| Uint8ArrayList): number => {`
`22`	`23`	`if (data.length < 2) throw RangeError('Could not decode int16BE')`
`23`	`24`
`24`	`25`	`if (data instanceof Uint8Array) {`
`@@ -49,8 +50,8 @@ export function decode0 (input: bytes): MessageBuffer {`
`49`	`50`	`}`
`50`	`51`
`51`	`52`	`return {`
`52`		`- ne: input.slice(0, 32),`
`53`		`- ciphertext: input.slice(32, input.length),`
	`53`	`+ ne: input.subarray(0, 32),`
	`54`	`+ ciphertext: input.subarray(32, input.length),`
`54`	`55`	`ns: new Uint8Array(0)`
`55`	`56`	`}`
`56`	`57`	`}`
`@@ -61,9 +62,9 @@ export function decode1 (input: bytes): MessageBuffer {`
`61`	`62`	`}`
`62`	`63`
`63`	`64`	`return {`
`64`		`- ne: input.slice(0, 32),`
`65`		`- ns: input.slice(32, 80),`
`66`		`- ciphertext: input.slice(80, input.length)`
	`65`	`+ ne: input.subarray(0, 32),`
	`66`	`+ ns: input.subarray(32, 80),`
	`67`	`+ ciphertext: input.subarray(80, input.length)`
`67`	`68`	`}`
`68`	`69`	`}`
`69`	`70`
`@@ -74,7 +75,7 @@ export function decode2 (input: bytes): MessageBuffer {`
`74`	`75`
`75`	`76`	`return {`
`76`	`77`	`ne: new Uint8Array(0),`
`77`		`- ns: input.slice(0, 48),`
`78`		`- ciphertext: input.slice(48, input.length)`
	`78`	`+ ns: input.subarray(0, 48),`
	`79`	`+ ciphertext: input.subarray(48, input.length)`
`79`	`80`	`}`
`80`	`81`	`}`
Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,7 @@ export class IKHandshake implements IHandshake {`
`83`	`83`	`const err = e as Error`
`84`	`84`	`logger('Responder breaking up with IK handshake in stage 0.')`
`85`	`85`
`86`		- throw new FailedIKError(receivedMsg, `Error occurred while verifying initiator's signed payload: ${err.message}`)
	`86`	+ throw new FailedIKError(receivedMsg.slice(), `Error occurred while verifying initiator's signed payload: ${err.message}`)
`87`	`87`	`}`
`88`	`88`	`}`
`89`	`89`	`}`
Original file line number	Diff line number	Diff line change
`@@ -98,7 +98,7 @@ export abstract class AbstractHandshake {`
`98`	`98`	`return derivedU8`
`99`	`99`	`}`
`100`	`100`
`101`		`- return derivedU8.slice(0, 32)`
	`101`	`+ return derivedU8.subarray(0, 32)`
`102`	`102`	`} catch (e) {`
`103`	`103`	`const err = e as Error`
`104`	`104`	`logger(err.message)`
Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`
`4`	`4`	`import { encodeMessage, decodeMessage, message, bytes } from 'protons-runtime'`
`5`	`5`	`import type { Codec } from 'protons-runtime'`
	`6`	`+import type { Uint8ArrayList } from 'uint8arraylist'`
`6`	`7`
`7`	`8`	`export namespace pb {`
`8`	`9`	`export interface NoiseHandshakePayload {`
`@@ -20,11 +21,11 @@ export namespace pb {`
`20`	`21`	`})`
`21`	`22`	`}`
`22`	`23`
`23`		`- export const encode = (obj: NoiseHandshakePayload): Uint8Array => {`
	`24`	`+ export const encode = (obj: NoiseHandshakePayload): Uint8ArrayList => {`
`24`	`25`	`return encodeMessage(obj, NoiseHandshakePayload.codec())`
`25`	`26`	`}`
`26`	`27`
`27`		`- export const decode = (buf: Uint8Array): NoiseHandshakePayload => {`
	`28`	`+ export const decode = (buf: Uint8Array \| Uint8ArrayList): NoiseHandshakePayload => {`
`28`	`29`	`return decodeMessage(buf, NoiseHandshakePayload.codec())`
`29`	`30`	`}`
`30`	`31`	`}`
Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@ export function createHandshakePayload (`
`36`	`36`	`identityKey: libp2pPublicKey,`
`37`	`37`	`identitySig: signedPayload,`
`38`	`38`	`data: earlyData ?? new Uint8Array(0)`
`39`		`- })`
	`39`	`+ }).subarray()`
`40`	`40`	`}`
`41`	`41`
`42`	`42`	`export async function signPayload (peerId: PeerId, payload: bytes): Promise<bytes> {`