peer

package
v0.10.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 29, 2023 License: Apache-2.0 Imports: 32 Imported by: 1

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	// ErrEmptyPeerID is returned if the peer id cannot be empty.
	ErrEmptyPeerID = errors.New("peer id cannot be empty")
	// ErrBodyEmpty is returned if the message body was empty.
	ErrBodyEmpty = errors.New("message body cannot be empty")
	// ErrSignatureInvalid is returned for an invalid signature.
	ErrSignatureInvalid = errors.New("message signature invalid")
	// ErrShortMessage is returned if a message is too short.
	ErrShortMessage = errors.New("message too short")
	// ErrNoPrivKey is returned if the private key is not available.
	ErrNoPrivKey = errors.New("private key not available for peer")
)
View Source 
var (
	ErrInvalidLength        = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflow          = fmt.Errorf("proto: integer overflow")
	ErrUnexpectedEndOfGroup = fmt.Errorf("proto: unexpected end of group")
)
View Source 
var File_github_com_aperturerobotics_bifrost_peer_peer_proto protoreflect.FileDescriptor

Functions

func DecryptWithEd25519 

func DecryptWithEd25519(
	t ed25519.PrivateKey,
	context string,
	ciphertext []byte,
) ([]byte, error)

DecryptWithEd25519 decrypts with a ed25519 key using curve25519.

generate msgPubKey aes256 key: blake3(context + encPubKey + ciphertext[:4]) decrypt msgPubKey from ciphertext[4:][:32] convert privKey to curve25519 public + private derive the shared secret with (privKey, msgPubKey) use blake3(msgPubKey)[:24] as the message nonce

ciphertext: msgNonce[:4] + aes256(msgPubKey) + chacha20poly1305(s2(message)) context and destination public key must be the same as when encrypting

func DecryptWithPrivKey 

func DecryptWithPrivKey(privKey crypto.PrivKey, context string, ciphertext []byte) ([]byte, error)

DecryptWithPrivKey decrypts with the given private key.

Supported types: Ed25519, RSA Context must be same as when encrypting.

func DecryptWithRSA 

func DecryptWithRSA(
	t *rsa.PrivateKey,
	context string,
	ciphertext []byte,
) ([]byte, error)

DecryptWithRSA decrypts a message with a RSA private key.

context must be the same as at encrypt time

func DeriveEd25519Key 

func DeriveEd25519Key(context string, privKey crypto.PrivKey) (crypto.PrivKey, crypto.PubKey, error)

DeriveEd25519Key derives a ed25519 private key from an existing private key.

The context string will be mixed to determine which key is generated. Not all private key types are supported.

func DeriveKey 

func DeriveKey(context string, privKey crypto.PrivKey, out []byte) error

DeriveKey derives a crypto key using a private key.

Not all private key types are supported. Context string must be unique to the situation. Data is written to out.

func EncryptToEd25519 

func EncryptToEd25519(
	t ed25519.PublicKey,
	context string,
	msgSrc []byte,
) ([]byte, error)

EncryptToEd25519 encrypts to a ed25519 key using curve25519.

convert destination key to curve25519 mix pub key into seed: blake3(context + msgSrc + encPubKey) generate the message priv key (ed25519) from seed derive the curve25519 public key from the message priv key use blake3(msgPubkeyCurve25519)[:24] as the message nonce generate msgPubKey aes256 key: blake3(context + encPubKey + msgNonce[:4])

ciphertext: msgNonce[:4] + aes256(msgPubKey) + chacha20poly1305(s2(message)) context and destination public key must be the same when decrypting

func EncryptToPubKey 

func EncryptToPubKey(pubKey crypto.PubKey, context string, msgSrc []byte) ([]byte, error)

EncryptToPubKey encrypts a message to a public key.

Supported types: Ed25519, RSA Context must be same whem decrypting, optional.

func EncryptToRSA 

func EncryptToRSA(
	t *rsa.PublicKey,
	context string,
	msgSrc []byte,
) ([]byte, error)

EncryptToRSA encrypts a message to a RSA public key.

marshal public key to pkix derive 32byte message key with blake3(context + msgSrc + pubPkix) derive 32byte message nonce with blake3(context + msgKey + pubPkix) compress message with s2 (snappy2) encrypt message with chacha20-poly1305

ciphertext: oaep(message-key) + chacha20poly1305(s2(msgSrc))

context must be the same at decrypt time

func IDB58Encode 

func IDB58Encode(id ID) string

IDB58Encode returns b58-encoded string

func NewNetAddr 

func NewNetAddr(pid ID) net.Addr

NewNetAddr constructs a new net.Addr from a peer ID.

Types

type GetPeer 

type GetPeer interface {
	// Directive indicates GetPeer is a directive.
	directive.Directive

	// GetPeerIDConstraint returns a specific peer ID node we are looking for.
	// If empty, any node is matched.
	GetPeerIDConstraint() ID
}

GetPeer is a directive to lookup a peer on a controller.

func NewGetPeer 

func NewGetPeer(peerID ID) GetPeer

NewGetPeer constructs a new getPeer directive.

type GetPeerResolver 

type GetPeerResolver struct {
	// contains filtered or unexported fields
}

GetPeerResolver resolves the GetPeer directive

func NewGetPeerResolver 

func NewGetPeerResolver(
	directive GetPeer,
	peer Peer,
) *GetPeerResolver

NewGetPeerResolver constructs a new GetPeer resolver

func (*GetPeerResolver) Resolve 

func (c *GetPeerResolver) Resolve(ctx context.Context, valHandler directive.ResolverHandler) error

Resolve resolves the values.

type GetPeerValue 

type GetPeerValue = Peer

GetPeerValue is the result of the GetPeer directive.

type ID 

type ID = ip.ID

ID is a peer identifier.

func IDB58Decode 

func IDB58Decode(s string) (ID, error)

IDB58Decode returns a b58-decoded Peer

func IDFromBytes 

func IDFromBytes(b []byte) (ID, error)

IDFromBytes cast a string to ID type, and validate the id to make sure it is a multihash.

func IDFromPrivateKey 

func IDFromPrivateKey(sk ic.PrivKey) (ID, error)

IDFromPrivateKey returns the Peer ID corresponding to sk

func IDFromPublicKey 

func IDFromPublicKey(pk ic.PubKey) (ID, error)

IDFromPublicKey returns the Peer ID corresponding to pk

type NetAddr 

type NetAddr struct {
	// contains filtered or unexported fields
}

NetAddr matches net.Addr with a peer ID

func (*NetAddr) Network 

func (a *NetAddr) Network() string

Network is the name of the network (for example, "tcp", "udp")

func (*NetAddr) String 

func (a *NetAddr) String() string

String form of address (for example, "192.0.2.1:25", "[2001:db8::1]:80")

type Peer 

type Peer interface {
	// GetPeerID returns the peer ID.
	GetPeerID() ID

	// GetPubKey returns the public key of the peer.
	GetPubKey() crypto.PubKey

	// GetPrivKey returns the private key.
	// This may require an extra lookup operation.
	// Returns ErrNoPrivKey if the private key is unavailable.
	GetPrivKey(ctx context.Context) (crypto.PrivKey, error)
}

Peer is the common interface for a keypair-based identity.

func GetPeerWithID 

func GetPeerWithID(
	ctx context.Context,
	b bus.Bus,
	peerIDConstraint ID,
	returnIfIdle bool,
	valDisposeCallback func(),
) (Peer, directive.Instance, directive.Reference, error)

GetPeerWithID gets a peer. If peer ID is empty, selects any peer. returnIfIdle if set, will return if the directive becomes idle. valDisposeCallback is called when the value is no longer valid. valDisposeCallback can be nil.

func NewPeer 

func NewPeer(privKey crypto.PrivKey) (Peer, error)

NewPeer builds a new Peer object with a private key. If privKey is nil, one will be generated.

func NewPeerWithID added in v0.7.3 

func NewPeerWithID(id lpeer.ID) (Peer, error)

NewPeerWithID constructs a new Peer by extracting the pubkey from the ID.

func NewPeerWithPubKey added in v0.7.3 

func NewPeerWithPubKey(pubKey crypto.PubKey) (Peer, error)

NewPeerWithPubKey builds a Peer with a public key.

type Signature 

type Signature struct {

	// PubKey is the public key of the peer.
	// May be empty if the public key is to be inferred from context.
	PubKey []byte `protobuf:"bytes,1,opt,name=pub_key,json=pubKey,proto3" json:"pub_key,omitempty"`
	// HashType is the hash type used to hash the data.
	// The signature is then of the hash bytes (usually 32).
	HashType hash.HashType `protobuf:"varint,2,opt,name=hash_type,json=hashType,proto3,enum=hash.HashType" json:"hash_type,omitempty"`
	// SigData contains the signature data.
	// The format is defined by the key type.
	SigData []byte `protobuf:"bytes,3,opt,name=sig_data,json=sigData,proto3" json:"sig_data,omitempty"`
	// contains filtered or unexported fields
}

Signature contains a signature by a peer.

func NewSignature 

func NewSignature(
	privKey crypto.PrivKey,
	hashType hash.HashType,
	data []byte,
	inclPubKey bool,
) (*Signature, error)

NewSignature constructs a signature.

func NewSignatureWithHashedData added in v0.8.7 

func NewSignatureWithHashedData(
	privKey crypto.PrivKey,
	hashType hash.HashType,
	hashData []byte,
	inclPubKey bool,
) (*Signature, error)

NewSignatureWithHashedData builds a new signature with already-hashed data. Skips the hash step.

func (*Signature) CloneGenericVT added in v0.8.3 

func (m *Signature) CloneGenericVT() proto.Message

func (*Signature) CloneVT added in v0.8.3 

func (m *Signature) CloneVT() *Signature

func (*Signature) Descriptor deprecated 

func (*Signature) Descriptor() ([]byte, []int)

Deprecated: Use Signature.ProtoReflect.Descriptor instead.

func (*Signature) EqualVT added in v0.3.0 

func (this *Signature) EqualVT(that *Signature) bool

func (*Signature) GetHashType 

func (x *Signature) GetHashType() hash.HashType

func (*Signature) GetPubKey 

func (x *Signature) GetPubKey() []byte

func (*Signature) GetSigData 

func (x *Signature) GetSigData() []byte

func (*Signature) MarshalToSizedBufferVT added in v0.2.0 

func (m *Signature) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*Signature) MarshalToVT added in v0.2.0 

func (m *Signature) MarshalToVT(dAtA []byte) (int, error)

func (*Signature) MarshalVT added in v0.2.0 

func (m *Signature) MarshalVT() (dAtA []byte, err error)

func (*Signature) ParsePubKey 

func (s *Signature) ParsePubKey() (crypto.PubKey, error)

ParsePubKey parses the incldued public key. Returns nil, nil if the pub key field was not set.

func (*Signature) ProtoMessage 

func (*Signature) ProtoMessage()

func (*Signature) ProtoReflect added in v0.2.0 

func (x *Signature) ProtoReflect() protoreflect.Message

func (*Signature) Reset 

func (x *Signature) Reset()

func (*Signature) SizeVT added in v0.2.0 

func (m *Signature) SizeVT() (n int)

func (*Signature) String 

func (x *Signature) String() string

func (*Signature) UnmarshalVT added in v0.2.0 

func (m *Signature) UnmarshalVT(dAtA []byte) error

func (*Signature) Validate 

func (s *Signature) Validate() error

Validate checks the signature object (but not the signature itself).

func (*Signature) VerifyWithPublic 

func (s *Signature) VerifyWithPublic(pubKey crypto.PubKey, data []byte) (bool, error)

VerifyWithPublic checks a signature with a public key, hashing the data. Returns ok and any error interpeting the signature.

type SignedMsg 

type SignedMsg struct {

	// FromPeerId is the peer identifier of the sender.
	FromPeerId string `protobuf:"bytes,1,opt,name=from_peer_id,json=fromPeerId,proto3" json:"from_peer_id,omitempty"`
	// Signature is the sender signature.
	// Should not contain PubKey, which is inferred from peer id.
	Signature *Signature `protobuf:"bytes,2,opt,name=signature,proto3" json:"signature,omitempty"`
	// Data is the PubMessageInner data.
	Data []byte `protobuf:"bytes,3,opt,name=data,proto3" json:"data,omitempty"`
	// contains filtered or unexported fields
}

SignedMsg is a message from a peer with a signature.

func NewSignedMsg 

func NewSignedMsg(
	privKey crypto.PrivKey,
	hashType hash.HashType,
	innerData []byte,
) (*SignedMsg, error)

NewSignedMsg constructs/signs/encodes a new signed message.

func UnmarshalSignedMsg 

func UnmarshalSignedMsg(data []byte) (*SignedMsg, error)

UnmarshalSignedMsg parses a signed message.

func (*SignedMsg) CloneGenericVT added in v0.8.3 

func (m *SignedMsg) CloneGenericVT() proto.Message

func (*SignedMsg) CloneVT added in v0.8.3 

func (m *SignedMsg) CloneVT() *SignedMsg

func (*SignedMsg) ComputeMessageID 

func (m *SignedMsg) ComputeMessageID() string

ComputeMessageID computes a message id for a signed message.

func (*SignedMsg) Descriptor deprecated 

func (*SignedMsg) Descriptor() ([]byte, []int)

Deprecated: Use SignedMsg.ProtoReflect.Descriptor instead.

func (*SignedMsg) EqualVT added in v0.3.0 

func (this *SignedMsg) EqualVT(that *SignedMsg) bool

func (*SignedMsg) ExtractAndVerify 

func (m *SignedMsg) ExtractAndVerify() (crypto.PubKey, ID, error)

ExtractAndVerify extracts public key & uses it to verify message

func (*SignedMsg) ExtractPubKey 

func (m *SignedMsg) ExtractPubKey() (crypto.PubKey, ID, error)

ExtractPubKey extracts the public key from the peer id.

func (*SignedMsg) GetData 

func (x *SignedMsg) GetData() []byte

func (*SignedMsg) GetFromPeerId 

func (x *SignedMsg) GetFromPeerId() string

func (*SignedMsg) GetSignature 

func (x *SignedMsg) GetSignature() *Signature

func (*SignedMsg) MarshalToSizedBufferVT added in v0.2.0 

func (m *SignedMsg) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*SignedMsg) MarshalToVT added in v0.2.0 

func (m *SignedMsg) MarshalToVT(dAtA []byte) (int, error)

func (*SignedMsg) MarshalVT added in v0.2.0 

func (m *SignedMsg) MarshalVT() (dAtA []byte, err error)

func (*SignedMsg) ParseFromPeerID 

func (m *SignedMsg) ParseFromPeerID() (ID, error)

ParseFromPeerID unmarshals the peer id.

func (*SignedMsg) ProtoMessage 

func (*SignedMsg) ProtoMessage()

func (*SignedMsg) ProtoReflect added in v0.2.0 

func (x *SignedMsg) ProtoReflect() protoreflect.Message

func (*SignedMsg) Reset 

func (x *SignedMsg) Reset()

func (*SignedMsg) Sign 

func (m *SignedMsg) Sign(privKey crypto.PrivKey, hashType hash.HashType) error

Sign signs the inner body with the private key. Disallows empty message.

func (*SignedMsg) SizeVT added in v0.2.0 

func (m *SignedMsg) SizeVT() (n int)

func (*SignedMsg) String 

func (x *SignedMsg) String() string

func (*SignedMsg) UnmarshalVT added in v0.2.0 

func (m *SignedMsg) UnmarshalVT(dAtA []byte) error

func (*SignedMsg) Validate 

func (m *SignedMsg) Validate() error

Validate checks the signed message.

func (*SignedMsg) Verify 

func (m *SignedMsg) Verify(pubKey crypto.PubKey) error

Verify verifies the signature against a public key.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.