Merge pull request #159 from libp2p/security-dev

Implement security
2026-02-12 16:10:57 +00:00 · 2019-05-07 09:56:19 -04:00
parent 9052e8f8bd 867f3a70f6
commit 49384ad3d7
17 changed files with 463 additions and 25 deletions
--- a/libp2p/network/connection/raw_connection.py
+++ b/libp2p/network/connection/raw_connection.py
@ -1,6 +1,5 @@
 from .raw_connection_interface import IRawConnection

-
 class RawConnection(IRawConnection):

    def __init__(self, ip, port, reader, writer, initiator):
@ -12,6 +11,19 @@ class RawConnection(IRawConnection):
        self._next_id = 0 if initiator else 1
        self.initiator = initiator

+    async def write(self, data):
+        self.writer.write(data)
+        self.writer.write("\n".encode())
+        await self.writer.drain()
+
+    async def read(self):
+        line = await self.reader.readline()
+        adjusted_line = line.decode().rstrip('\n')
+
+        # TODO: figure out a way to remove \n without going back and forth with
+        # encoding and decoding
+        return adjusted_line.encode()
+
    def close(self):
        self.writer.close()

--- a/libp2p/network/swarm.py
+++ b/libp2p/network/swarm.py
@ -72,8 +72,10 @@ class Swarm(INetwork):
            # Transport dials peer (gets back a raw conn)
            raw_conn = await self.transport.dial(multiaddr, self.self_id)

-            # Use upgrader to upgrade raw conn to muxed conn
-            muxed_conn = self.upgrader.upgrade_connection(raw_conn, \
+            # Per, https://discuss.libp2p.io/t/multistream-security/130, we first secure
+            # the conn and then mux the conn
+            secured_conn = await self.upgrader.upgrade_security(raw_conn, peer_id, True)
+            muxed_conn = self.upgrader.upgrade_connection(secured_conn, \
                self.generic_protocol_handler, peer_id)

            # Store muxed connection in connections
@ -148,7 +150,11 @@ class Swarm(INetwork):
                # to appropriate stream handler (using multiaddr)
                raw_conn = RawConnection(multiaddr.value_for_protocol('ip4'),
                                         multiaddr.value_for_protocol('tcp'), reader, writer, False)
-                muxed_conn = self.upgrader.upgrade_connection(raw_conn, \
+
+                # Per, https://discuss.libp2p.io/t/multistream-security/130, we first secure
+                # the conn and then mux the conn
+                secured_conn = await self.upgrader.upgrade_security(raw_conn, peer_id, False)
+                muxed_conn = self.upgrader.upgrade_connection(secured_conn, \
                    self.generic_protocol_handler, peer_id)

                # Store muxed_conn with peer id