add the peer ID to SecureInbound #104

marten-seemann · 2021-09-05T14:48:18Z

Stebalien · 2021-09-08T10:34:53Z

handshake.go

@@ -243,7 +243,7 @@ func (s *secureSession) handleRemoteHandshakePayload(payload []byte, remoteStati
 	}

 	// if we know who we're trying to reach, make sure we have the right peer
-	if s.initiator && s.remoteID != id {


Don't we want to assert that we know the remote peer ID if we're the initiator?

I want to get to the point where we can dial a multiaddr and learn the remote peer ID from the handshake, but this PR is probably not the place to work towards that. Will adjust the logic.

Yeah, I agree. We just need to be careful about that to make sure we can't get tricked into dialing the wrong peer.

Although I guess we enforce this in the swarm so it's probably not an issue.

marten-seemann requested review from Stebalien and yusefnapora September 5, 2021 14:48

Stebalien approved these changes Sep 8, 2021

View reviewed changes

add the peer ID to SecureInbound

52c3bda

marten-seemann force-pushed the check-peer-id-on-inbound branch from df52653 to 52c3bda Compare September 8, 2021 11:41

marten-seemann merged commit c35ec2c into master Sep 8, 2021

marten-seemann deleted the check-peer-id-on-inbound branch September 20, 2021 17:12

aschmahmann mentioned this pull request Dec 1, 2021

Release v0.11 ipfs/kubo#8343

Closed

80 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

add the peer ID to SecureInbound #104

add the peer ID to SecureInbound #104

marten-seemann commented Sep 5, 2021

Stebalien Sep 8, 2021

marten-seemann Sep 8, 2021

Stebalien Sep 8, 2021

add the peer ID to SecureInbound #104

add the peer ID to SecureInbound #104

Conversation

marten-seemann commented Sep 5, 2021

Stebalien Sep 8, 2021

Choose a reason for hiding this comment

marten-seemann Sep 8, 2021

Choose a reason for hiding this comment

Stebalien Sep 8, 2021

Choose a reason for hiding this comment