Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add config options for security protocols #158

Merged
merged 3 commits into from
May 7, 2020
Merged

add config options for security protocols #158

merged 3 commits into from
May 7, 2020

Conversation

yusefnapora
Copy link
Contributor

This adds a new Security config section with SECIO, TLS and Noise boolean flags, plus command line switches to enable / disable each protocol. Secio is still enabled by default, but now you can disable it with -secio=false and enable others, e.g. -tls -noise. If you disable secio without enabling any others, the daemon will fail with a fatal error.

I'm opening this as a draft PR since I don't think Noise is quite ready to be a dependency of the daemon, but I want to have it available on a branch so we can setup interop tests with the javascript Noise implementation.

cc @vyzo, @vasco-santos

vyzo
vyzo reviewed Dec 12, 2019
View reviewed changes
p2pd/main.go Outdated Show resolved Hide resolved
This was referenced Feb 9, 2020
Merged
Closed
jacobheun
jacobheun reviewed Apr 22, 2020
View reviewed changes
p2pd/main.go Outdated
securityOpts = append(securityOpts, libp2p.Security(tls.ID, tls.New))
}
if c.Security.Noise {
securityOpts = append(securityOpts, libp2p.Security(noise.ID, noise.Maker()))
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This needs to be updated with the latest Noise.

Suggested change
securityOpts = append(securityOpts, libp2p.Security(noise.ID, noise.Maker()))
securityOpts = append(securityOpts, libp2p.Security(noise.ID, noise.New))

@yusefnapora IMO this branch is sufficient enough to get merged in. Noise isn't on by default so it's not an issue and would more easily enable ongoing interop testing. Can we get the dependencies updated in here so we can merge? I've been using this branch locally for interop testing and we have other contributors who this would be helpful for.

@morrigan morrigan mentioned this pull request Apr 23, 2020
Closed
@jacobheun
Copy link
Contributor

cc @aarshkshah1992

@aarshkshah1992
Copy link
Contributor

@Stebalien @jacobheun

Have updated the deps on this PR & it now uses the latest Noise code.
Should we make Noise the default rather than SecIO ?

@Stebalien
Copy link
Member

Except for testing, not yet. We want a release or two where it's available before we switch the default.

@aarshkshah1992 aarshkshah1992 marked this pull request as ready for review May 7, 2020 08:59
@aarshkshah1992
Copy link
Contributor

@Stebalien @jacobheun Please can I review ? This looks good to merge.

@Stebalien
Copy link
Member

Feel free to approve and merge.

jacobheun
jacobheun approved these changes May 7, 2020
View reviewed changes
Copy link
Contributor

@jacobheun jacobheun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, fyi js is also still using secio as the default. 🚢

@jacobheun jacobheun merged commit 4169fec into master May 7, 2020
@jacobheun jacobheun deleted the feat/config-crypto-channels branch May 7, 2020 10:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vyzo vyzo vyzo left review comments

@jacobheun jacobheun jacobheun approved these changes

@Stebalien Stebalien Awaiting requested review from Stebalien

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@yusefnapora @jacobheun @aarshkshah1992 @Stebalien @vyzo