From 009bf67f940c73d884d947a4b4e9b77c2b3b4f2d Mon Sep 17 00:00:00 2001 From: Marten Seemann Date: Thu, 20 Feb 2020 12:06:32 +0700 Subject: [PATCH] remove key serialization, construct conn from ipnet.PSK --- codec.go | 66 ------------------------ codec_test.go | 123 -------------------------------------------- fingerprint.go | 24 --------- fingerprint_test.go | 18 ------- generate.go | 38 -------------- generate_test.go | 55 -------------------- go.mod | 5 +- go.sum | 61 +++++----------------- protector.go | 39 +++----------- psk_conn_test.go | 7 ++- 10 files changed, 26 insertions(+), 410 deletions(-) delete mode 100644 codec.go delete mode 100644 codec_test.go delete mode 100644 fingerprint.go delete mode 100644 fingerprint_test.go delete mode 100644 generate.go delete mode 100644 generate_test.go diff --git a/codec.go b/codec.go deleted file mode 100644 index 19b929f..0000000 --- a/codec.go +++ /dev/null @@ -1,66 +0,0 @@ -package pnet - -import ( - "bufio" - "bytes" - "encoding/base64" - "encoding/hex" - "fmt" - "io" -) - -var ( - pathPSKv1 = []byte("/key/swarm/psk/1.0.0/") - pathBin = "/bin/" - pathBase16 = "/base16/" - pathBase64 = "/base64/" -) - -func readHeader(r *bufio.Reader) ([]byte, error) { - header, err := r.ReadBytes('\n') - if err != nil { - return nil, err - } - - return bytes.TrimRight(header, "\r\n"), nil -} - -func expectHeader(r *bufio.Reader, expected []byte) error { - header, err := readHeader(r) - if err != nil { - return err - } - if !bytes.Equal(header, expected) { - return fmt.Errorf("expected file header %s, got: %s", pathPSKv1, header) - } - return nil -} - -func decodeV1PSK(in io.Reader) (*[32]byte, error) { - reader := bufio.NewReader(in) - if err := expectHeader(reader, pathPSKv1); err != nil { - return nil, err - } - header, err := readHeader(reader) - if err != nil { - return nil, err - } - - var decoder io.Reader - switch string(header) { - case pathBase16: - decoder = hex.NewDecoder(reader) - case pathBase64: - decoder = base64.NewDecoder(base64.StdEncoding, reader) - case pathBin: - decoder = reader - default: - return nil, fmt.Errorf("unknown encoding: %s", header) - } - out := new([32]byte) - _, err = io.ReadFull(decoder, out[:]) - if err != nil { - return nil, err - } - return out, nil -} diff --git a/codec_test.go b/codec_test.go deleted file mode 100644 index 233f341..0000000 --- a/codec_test.go +++ /dev/null @@ -1,123 +0,0 @@ -package pnet - -import ( - "bytes" - "encoding/base64" - "testing" -) - -func bufWithBase(base string, windows bool) *bytes.Buffer { - - b := &bytes.Buffer{} - b.Write(pathPSKv1) - if windows { - b.WriteString("\r") - } - b.WriteString("\n") - b.WriteString(base) - if windows { - b.WriteString("\r") - } - b.WriteString("\n") - return b -} - -func TestDecodeHex(t *testing.T) { - testDecodeHex(t, true) - testDecodeHex(t, false) -} - -func TestDecodeBad(t *testing.T) { - testDecodeBad(t, true) - testDecodeBad(t, false) -} - -func testDecodeBad(t *testing.T, windows bool) { - b := bufWithBase("/verybadbase/", windows) - b.WriteString("Have fun decoding that key") - - _, err := decodeV1PSK(b) - if err == nil { - t.Fatal("expected 'unknown encoding' got nil") - } -} - -func testDecodeHex(t *testing.T, windows bool) { - b := bufWithBase("/base16/", windows) - for i := 0; i < 32; i++ { - b.WriteString("FF") - } - - psk, err := decodeV1PSK(b) - if err != nil { - t.Fatal(err) - } - - for _, b := range psk { - if b != 255 { - t.Fatal("byte was wrong") - } - } -} - -func TestDecodeB64(t *testing.T) { - testDecodeB64(t, true) - testDecodeB64(t, false) -} - -func testDecodeB64(t *testing.T, windows bool) { - b := bufWithBase("/base64/", windows) - key := make([]byte, 32) - for i := 0; i < 32; i++ { - key[i] = byte(i) - } - - e := base64.NewEncoder(base64.StdEncoding, b) - _, err := e.Write(key) - if err != nil { - t.Fatal(err) - } - err = e.Close() - if err != nil { - t.Fatal(err) - } - - psk, err := decodeV1PSK(b) - if err != nil { - t.Fatal(err) - } - - for i, b := range psk { - if b != psk[i] { - t.Fatal("byte was wrong") - } - } - -} - -func TestDecodeBin(t *testing.T) { - testDecodeBin(t, true) - testDecodeBin(t, false) -} - -func testDecodeBin(t *testing.T, windows bool) { - b := bufWithBase("/bin/", windows) - key := make([]byte, 32) - for i := 0; i < 32; i++ { - key[i] = byte(i) - } - - b.Write(key) - - psk, err := decodeV1PSK(b) - if err != nil { - t.Fatal(err) - } - - for i, b := range psk { - if b != psk[i] { - t.Fatal("byte was wrong") - } - } - -} diff --git a/fingerprint.go b/fingerprint.go deleted file mode 100644 index 978a46b..0000000 --- a/fingerprint.go +++ /dev/null @@ -1,24 +0,0 @@ -package pnet - -import ( - "golang.org/x/crypto/salsa20" - "golang.org/x/crypto/sha3" -) - -var zero64 = make([]byte, 64) - -func fingerprint(psk *[32]byte) []byte { - enc := make([]byte, 64) - - // We encrypt data first so we don't feed PSK to hash function. - // Salsa20 function is not reversible thus increasing our security margin. - salsa20.XORKeyStream(enc, zero64, []byte("finprint"), psk) - - out := make([]byte, 16) - // Then do Shake-128 hash to reduce its length. - // This way if for some reason Shake is broken and Salsa20 preimage is possible, - // attacker has only half of the bytes necessary to recreate psk. - sha3.ShakeSum128(out, enc) - - return out -} diff --git a/fingerprint_test.go b/fingerprint_test.go deleted file mode 100644 index 04b238e..0000000 --- a/fingerprint_test.go +++ /dev/null @@ -1,18 +0,0 @@ -package pnet - -import ( - "bytes" - "testing" -) - -var tpsk *[32]byte = &[32]byte{} - -func TestFingerprintGen(t *testing.T) { - f := fingerprint(tpsk) - exp := []byte{0x70, 0x8a, 0x75, 0xaf, 0xd0, 0x5a, 0xff, 0xb0, 0x87, 0x36, 0xcb, 0xf1, 0x7c, 0x73, 0x77, 0x3e} - - if !bytes.Equal(f, exp) { - t.Fatal("fingerprint different than expected") - } - -} diff --git a/generate.go b/generate.go deleted file mode 100644 index cf220ce..0000000 --- a/generate.go +++ /dev/null @@ -1,38 +0,0 @@ -package pnet - -import ( - "bytes" - "crypto/rand" - "encoding/hex" - "io" -) - -func newLine() io.Reader { - return bytes.NewReader([]byte("\n")) -} - -// GenerateV1PSK generates new PSK key that can be used with NewProtector -func GenerateV1PSK() (io.Reader, error) { - psk, err := GenerateV1Bytes() - if err != nil { - return nil, err - } - - hexPsk := make([]byte, len(psk)*2) - hex.Encode(hexPsk, psk[:]) - - // just a shortcut to NewReader - nr := func(b []byte) io.Reader { - return bytes.NewReader(b) - } - return io.MultiReader(nr(pathPSKv1), newLine(), nr([]byte("/base16/")), newLine(), nr(hexPsk)), nil -} - -func GenerateV1Bytes() (*[32]byte, error) { - psk := [32]byte{} - _, err := rand.Read(psk[:]) - if err != nil { - return nil, err - } - return &psk, nil -} diff --git a/generate_test.go b/generate_test.go deleted file mode 100644 index e06e4c1..0000000 --- a/generate_test.go +++ /dev/null @@ -1,55 +0,0 @@ -package pnet - -import ( - "bytes" - "io/ioutil" - "testing" -) - -func TestGeneratedPSKCanBeUsed(t *testing.T) { - psk, err := GenerateV1PSK() - if err != nil { - t.Fatal(err) - } - - _, err = NewProtector(psk) - if err != nil { - t.Fatal(err) - } -} - -func TestGeneratedKeysAreDifferent(t *testing.T) { - psk1, err := GenerateV1PSK() - if err != nil { - t.Fatal(err) - } - psk2, err := GenerateV1PSK() - if err != nil { - t.Fatal(err) - } - bpsk1, err := ioutil.ReadAll(psk1) - if err != nil { - t.Fatal(err) - } - bpsk2, err := ioutil.ReadAll(psk2) - if err != nil { - t.Fatal(err) - } - if bytes.Equal(bpsk1, bpsk2) { - t.Fatal("generated keys are the same") - } -} - -func TestGeneratedV1BytesAreDifferent(t *testing.T) { - b1, err := GenerateV1Bytes() - if err != nil { - t.Fatal(err) - } - b2, err := GenerateV1Bytes() - if err != nil { - t.Fatal(err) - } - if bytes.Equal(b1[:], b2[:]) { - t.Fatal("generated keys are the same") - } -} diff --git a/go.mod b/go.mod index 43e4291..6d034d4 100644 --- a/go.mod +++ b/go.mod @@ -1,8 +1,9 @@ module github.com/libp2p/go-libp2p-pnet +go 1.13 + require ( github.com/davidlazar/go-crypto v0.0.0-20170701192655-dcfb0a7ac018 github.com/libp2p/go-buffer-pool v0.0.2 - github.com/libp2p/go-libp2p-core v0.3.0 - golang.org/x/crypto v0.0.0-20190513172903-22d7a77e9e5f + github.com/libp2p/go-libp2p-core v0.5.0 ) diff --git a/go.sum b/go.sum index 8232efd..3fd0f0b 100644 --- a/go.sum +++ b/go.sum @@ -1,13 +1,9 @@ cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= github.com/aead/siphash v1.0.1/go.mod h1:Nywa3cDsYNNK3gaciGTWPwHt0wlpNV15vwmswBAUSII= -github.com/btcsuite/btcd v0.0.0-20190213025234-306aecffea32/go.mod h1:DrZx5ec/dmnfpw9KyYoQyYo7d0KEvTkk/5M/vbZjAr8= -github.com/btcsuite/btcd v0.0.0-20190824003749-130ea5bddde3 h1:A/EVblehb75cUgXA5njHPn0kLAsykn6mJGz7rnmW5W0= -github.com/btcsuite/btcd v0.0.0-20190824003749-130ea5bddde3/go.mod h1:3J08xEfcugPacsc34/LKRU2yO7YmuT8yt28J8k2+rrI= github.com/btcsuite/btcd v0.20.1-beta h1:Ik4hyJqN8Jfyv3S4AGBOmyouMsYE3EdYODkMbQjwPGw= github.com/btcsuite/btcd v0.20.1-beta/go.mod h1:wVuoA8VJLEcwgqHBwHmzLRazpKxTv13Px/pDuV7OomQ= github.com/btcsuite/btclog v0.0.0-20170628155309-84c8d2346e9f/go.mod h1:TdznJufoqS23FtqVCzL0ZqgP5MqXbb4fg/WgDys70nA= -github.com/btcsuite/btcutil v0.0.0-20190207003914-4c204d697803/go.mod h1:+5NJ2+qvTyV9exUAL/rxXi3DcLg2Ts+ymUAY5y4NvMg= github.com/btcsuite/btcutil v0.0.0-20190425235716-9e5f4b9a998d/go.mod h1:+5NJ2+qvTyV9exUAL/rxXi3DcLg2Ts+ymUAY5y4NvMg= github.com/btcsuite/go-socks v0.0.0-20170105172521-4720035b7bfd/go.mod h1:HHNXQzUsZCxOoE+CPiyCTO6x34Zs86zZUiwtpXoGdtg= github.com/btcsuite/goleveldb v0.0.0-20160330041536-7834afc9e8cd/go.mod h1:F+uVaaLLH7j4eDXPRvw78tMflu7Ie2bzYOH4Y8rRKBY= @@ -22,7 +18,6 @@ github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSs github.com/davidlazar/go-crypto v0.0.0-20170701192655-dcfb0a7ac018 h1:6xT9KW8zLC5IlbaIF5Q7JNieBoACT7iW0YTxQHR0in0= github.com/davidlazar/go-crypto v0.0.0-20170701192655-dcfb0a7ac018/go.mod h1:rQYf4tfk5sSwFsnDg3qYaBxSjsD9S8+59vW0dKUgme4= github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo= -github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4= github.com/gogo/protobuf v1.3.1 h1:DqDEcV5aeaTmdFBePNpYsp3FlcVH/2ISVVM9Qf8PSls= github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o= github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= @@ -31,21 +26,16 @@ github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfb github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= -github.com/gxed/hashland/keccakpg v0.0.1/go.mod h1:kRzw3HkwxFU1mpmPP8v1WyQzwdGfmKFJ6tItnhQ67kU= -github.com/gxed/hashland/murmur3 v0.0.1/go.mod h1:KjXop02n4/ckmZSnY2+HKcLud/tcmvhST0bie/0lS48= github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU= -github.com/ipfs/go-cid v0.0.1/go.mod h1:GHWU/WuQdMPmIosc4Yn1bcCT7dSeX4lBafM7iqUPQvM= -github.com/ipfs/go-cid v0.0.3 h1:UIAh32wymBpStoe83YCzwVQQ5Oy/H0FdxvUS6DJDzms= -github.com/ipfs/go-cid v0.0.3/go.mod h1:GHWU/WuQdMPmIosc4Yn1bcCT7dSeX4lBafM7iqUPQvM= +github.com/ipfs/go-cid v0.0.5 h1:o0Ix8e/ql7Zb5UVUJEUfjsWCIY8t48++9lR8qi6oiJU= +github.com/ipfs/go-cid v0.0.5/go.mod h1:plgt+Y5MnOey4vO4UlUazGqdbEXuFYitED67FexhXog= github.com/jbenet/go-cienv v0.1.0/go.mod h1:TqNnHUmJgXau0nCzC7kXWeotg3J9W34CUv5Djy1+FlA= -github.com/jbenet/goprocess v0.0.0-20160826012719-b497e2f366b8/go.mod h1:Ly/wlsjFq/qrU3Rar62tu1gASgGw6chQbSh/XgIIXCY= github.com/jbenet/goprocess v0.1.3 h1:YKyIEECS/XvcfHtBzxtjBBbWK+MbvA6dG8ASiqwvr10= github.com/jbenet/goprocess v0.1.3/go.mod h1:5yspPrukOVuOLORacaBi858NqyClJPQxYZlqdZVfqY4= github.com/jessevdk/go-flags v0.0.0-20141203071132-1679536dcc89/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI= github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI= github.com/jrick/logrotate v1.0.0/go.mod h1:LNinyqDIJnpAur+b8yyulnQw/wDuN1+BYKlTRt3OuAQ= github.com/kami-zh/go-capturer v0.0.0-20171211120116-e492ea43421d/go.mod h1:P2viExyCEfeWGU259JnaQ34Inuec4R38JCyBx2edgD0= -github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q= github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00= github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= github.com/kkdai/bstream v0.0.0-20161212061736-f391b8402d23/go.mod h1:J+Gs4SYgM6CZQHDETBtE9HaSEkGmuNXF86RwHhHUvq4= @@ -55,17 +45,9 @@ github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ= github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI= github.com/libp2p/go-buffer-pool v0.0.2 h1:QNK2iAFa8gjAe1SPz6mHSMuCcjs+X1wlHzeOSqcmlfs= github.com/libp2p/go-buffer-pool v0.0.2/go.mod h1:MvaB6xw5vOrDl8rYZGLFdKAuk/hRoRZd1Vi32+RXyFM= -github.com/libp2p/go-flow-metrics v0.0.1/go.mod h1:Iv1GH0sG8DtYN3SVJ2eG221wMiNpZxBdp967ls1g+k8= -github.com/libp2p/go-flow-metrics v0.0.2/go.mod h1:HeoSNUrOJVK1jEpDqVEiUOIXqhbnS27omG0uWU5slZs= github.com/libp2p/go-flow-metrics v0.0.3/go.mod h1:HeoSNUrOJVK1jEpDqVEiUOIXqhbnS27omG0uWU5slZs= -github.com/libp2p/go-libp2p-core v0.0.1 h1:HSTZtFIq/W5Ue43Zw+uWZyy2Vl5WtF0zDjKN8/DT/1I= -github.com/libp2p/go-libp2p-core v0.0.1/go.mod h1:g/VxnTZ/1ygHxH3dKok7Vno1VfpvGcGip57wjTU4fco= -github.com/libp2p/go-libp2p-core v0.2.5 h1:iP1PIiIrlRrGbE1fYq2918yBc5NlCH3pFuIPSWU9hds= -github.com/libp2p/go-libp2p-core v0.2.5/go.mod h1:6+5zJmKhsf7yHn1RbmYDu08qDUpIUxGdqHuEZckmZOA= -github.com/libp2p/go-libp2p-core v0.3.0 h1:F7PqduvrztDtFsAa/bcheQ3azmNo+Nq7m8hQY5GiUW8= -github.com/libp2p/go-libp2p-core v0.3.0/go.mod h1:ACp3DmS3/N64c2jDzcV429ukDpicbL6+TrrxANBjPGw= -github.com/libp2p/go-openssl v0.0.3 h1:wjlG7HvQkt4Fq4cfH33Ivpwp0omaElYEi9z26qaIkIk= -github.com/libp2p/go-openssl v0.0.3/go.mod h1:unDrJpgy3oFr+rqXsarWifmJuNnJR4chtO1HmaZjggc= +github.com/libp2p/go-libp2p-core v0.5.0 h1:FBQ1fpq2Fo/ClyjojVJ5AKXlKhvNc/B6U0O+7AN1ffE= +github.com/libp2p/go-libp2p-core v0.5.0/go.mod h1:49XGI+kc38oGVwqSBhDEwytaAxgZasHhFfQKibzTls0= github.com/libp2p/go-openssl v0.0.4 h1:d27YZvLoTyMhIN4njrkr8zMDOM4lfpHIp6A+TK9fovg= github.com/libp2p/go-openssl v0.0.4/go.mod h1:unDrJpgy3oFr+rqXsarWifmJuNnJR4chtO1HmaZjggc= github.com/mailru/easyjson v0.0.0-20180823135443-60711f1a8329 h1:2gxZ0XQIU/5z3Z3bUBu+FXuk2pFbkN6tcwi/pjyaDic= @@ -75,32 +57,23 @@ github.com/mattn/go-isatty v0.0.4/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNx github.com/mgutz/ansi v0.0.0-20170206155736-9520e82c474b/go.mod h1:01TrycV0kFyexm33Z7vhZRXopbI8J3TDReVlkTgMUxE= github.com/minio/blake2b-simd v0.0.0-20160723061019-3f5f724cb5b1 h1:lYpkrQH5ajf0OXOcUbGjvZxxijuBwbbmlSxLiuofa+g= github.com/minio/blake2b-simd v0.0.0-20160723061019-3f5f724cb5b1/go.mod h1:pD8RvIylQ358TN4wwqatJ8rNavkEINozVn9DtGI3dfQ= -github.com/minio/sha256-simd v0.0.0-20190131020904-2d45a736cd16/go.mod h1:2FMWW+8GMoPweT6+pI63m9YE3Lmw4J71hV56Chs1E/U= github.com/minio/sha256-simd v0.1.1-0.20190913151208-6de447530771/go.mod h1:B5e1o+1/KgNmWrSQK08Y6Z1Vb5pwIktudl0J58iy0KM= github.com/minio/sha256-simd v0.1.1 h1:5QHSlgo3nt5yKOJrC7W8w7X+NFl8cMPZm96iu8kKUJU= github.com/minio/sha256-simd v0.1.1/go.mod h1:B5e1o+1/KgNmWrSQK08Y6Z1Vb5pwIktudl0J58iy0KM= github.com/mr-tron/base58 v1.1.0/go.mod h1:xcD2VGqlgYjBdcBLw+TuYLr8afG+Hj8g2eTVqeSzSU8= -github.com/mr-tron/base58 v1.1.1/go.mod h1:xcD2VGqlgYjBdcBLw+TuYLr8afG+Hj8g2eTVqeSzSU8= -github.com/mr-tron/base58 v1.1.2 h1:ZEw4I2EgPKDJ2iEw0cNmLB3ROrEmkOtXIkaG7wZg+78= -github.com/mr-tron/base58 v1.1.2/go.mod h1:BinMc/sQntlIE1frQmRFPUoPA1Zkr8VRgBdjWI2mNwc= github.com/mr-tron/base58 v1.1.3 h1:v+sk57XuaCKGXpWtVBX8YJzO7hMGx4Aajh4TQbdEFdc= github.com/mr-tron/base58 v1.1.3/go.mod h1:BinMc/sQntlIE1frQmRFPUoPA1Zkr8VRgBdjWI2mNwc= github.com/multiformats/go-base32 v0.0.3 h1:tw5+NhuwaOjJCC5Pp82QuXbrmLzWg7uxlMFp8Nq/kkI= github.com/multiformats/go-base32 v0.0.3/go.mod h1:pLiuGC8y0QR3Ue4Zug5UzK9LjgbkL8NSQj0zQ5Nz/AA= -github.com/multiformats/go-multiaddr v0.0.2/go.mod h1:xKVEak1K9cS1VdmPZW3LSIb6lgmoS58qz/pzqmAxV44= -github.com/multiformats/go-multiaddr v0.1.1 h1:rVAztJYMhCQ7vEFr8FvxW3mS+HF2eY/oPbOMeS0ZDnE= -github.com/multiformats/go-multiaddr v0.1.1/go.mod h1:aMKBKNEYmzmDmxfX88/vz+J5IU55txyt0p4aiWVohjo= -github.com/multiformats/go-multiaddr v0.2.0 h1:lR52sFwcTCuQb6bTfnXF6zA2XfyYvyd+5a9qECv/J90= -github.com/multiformats/go-multiaddr v0.2.0/go.mod h1:0nO36NvPpyV4QzvTLi/lafl2y95ncPj0vFwVF6k6wJ4= +github.com/multiformats/go-multiaddr v0.2.1 h1:SgG/cw5vqyB5QQe5FPe2TqggU9WtrA9X4nZw7LlVqOI= +github.com/multiformats/go-multiaddr v0.2.1/go.mod h1:s/Apk6IyxfvMjDafnhJgJ3/46z7tZ04iMk5wP4QMGGE= github.com/multiformats/go-multibase v0.0.1 h1:PN9/v21eLywrFWdFNsFKaU04kLJzuYzmrJR+ubhT9qA= github.com/multiformats/go-multibase v0.0.1/go.mod h1:bja2MqRZ3ggyXtZSEDKpl0uO/gviWFaSteVbWT51qgs= -github.com/multiformats/go-multihash v0.0.1/go.mod h1:w/5tugSrLEbWqlcgJabL3oHFKTwfvkofsjW2Qa1ct4U= -github.com/multiformats/go-multihash v0.0.8 h1:wrYcW5yxSi3dU07n5jnuS5PrNwyHy0zRHGVoUugWvXg= -github.com/multiformats/go-multihash v0.0.8/go.mod h1:YSLudS+Pi8NHE7o6tb3D8vrpKa63epEDmG8nTduyAew= -github.com/multiformats/go-multihash v0.0.10 h1:lMoNbh2Ssd9PUF74Nz008KGzGPlfeV6wH3rit5IIGCM= -github.com/multiformats/go-multihash v0.0.10/go.mod h1:YSLudS+Pi8NHE7o6tb3D8vrpKa63epEDmG8nTduyAew= -github.com/multiformats/go-varint v0.0.1 h1:TR/0rdQtnNxuN2IhiB639xC3tWM4IUi7DkTBVTdGW/M= -github.com/multiformats/go-varint v0.0.1/go.mod h1:3Ls8CIEsrijN6+B7PbrXRPxHRPuXSrVKRY101jdMZYE= +github.com/multiformats/go-multihash v0.0.13 h1:06x+mk/zj1FoMsgNejLpy6QTvJqlSt/BhLEy87zidlc= +github.com/multiformats/go-multihash v0.0.13/go.mod h1:VdAWLKTwram9oKAatUcLxBNUjdtcVwxObEQBtRfuyjc= +github.com/multiformats/go-varint v0.0.2/go.mod h1:3Ls8CIEsrijN6+B7PbrXRPxHRPuXSrVKRY101jdMZYE= +github.com/multiformats/go-varint v0.0.5 h1:XVZwSo04Cs3j/jS0uAEPpT3JY6DzMcVLLoWOSnCxOjg= +github.com/multiformats/go-varint v0.0.5/go.mod h1:3Ls8CIEsrijN6+B7PbrXRPxHRPuXSrVKRY101jdMZYE= github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE= github.com/onsi/ginkgo v1.7.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE= github.com/onsi/gomega v1.4.3/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY= @@ -108,7 +81,6 @@ github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZN github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo= github.com/smola/gocompat v0.2.0 h1:6b1oIMlUXIpz//VKEDzPVBK8KG7beVwmHIUEBIs/Pns= github.com/smola/gocompat v0.2.0/go.mod h1:1B0MlxbmoZNo3h8guHp8HztB3BSYR5itql9qtVc0ypY= -github.com/spacemonkeygo/openssl v0.0.0-20181017203307-c2dcc5cca94a/go.mod h1:7AyxJNCJ7SBZ1MfVQCWD6Uqo2oubI2Eq2y2eqf+A5r0= github.com/spacemonkeygo/spacelog v0.0.0-20180420211403-2296661a0572 h1:RC6RW7j+1+HkWaX/Yh71Ee5ZHaHYt7ZP4sQgUrm6cDU= github.com/spacemonkeygo/spacelog v0.0.0-20180420211403-2296661a0572/go.mod h1:w0SWMsp6j9O/dk4/ZpIhL+3CkG8ofA2vuv7k+ltqUMc= github.com/spaolacci/murmur3 v1.1.0 h1:7c1g84S4BPRrfL5Xrdp6fOJ206sU9y293DDHaoy0bLI= @@ -119,19 +91,12 @@ github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+ github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs= github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4= github.com/x-cray/logrus-prefixed-formatter v0.5.2/go.mod h1:2duySbKsL6M18s5GU7VPsoEPHyzalCE06qoARUCeBBE= -go.opencensus.io v0.22.1/go.mod h1:Ap50jQcDJrx6rB6VgeeFPtuPIf3wMRvRfrfYDO6+BmA= -go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw= +go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw= golang.org/x/crypto v0.0.0-20170930174604-9419663f5a44/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= -golang.org/x/crypto v0.0.0-20190211182817-74369b46fc67/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= -golang.org/x/crypto v0.0.0-20190225124518-7f87c0fbb88b/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= -golang.org/x/crypto v0.0.0-20190513172903-22d7a77e9e5f h1:R423Cnkcp5JABoeemiGEPlt9tHXFfw5kvc0yqlxRPWo= -golang.org/x/crypto v0.0.0-20190513172903-22d7a77e9e5f/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8 h1:1wopBVtVdWnn03fZelqdXTqk7U7zPQCb+T4rbU9ZEoU= golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= -golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550 h1:ObdrDkeb4kJdCP557AjRjq69pTHfNouLtWZG7j9rPN8= -golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= @@ -151,7 +116,6 @@ golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5h golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20190219092855-153ac476189d/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190412213103-97732733099d h1:+R4KGOnez64A81RvjARKc4UT5/tI9ujCIVX+P5KiHuI= golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= @@ -159,7 +123,6 @@ golang.org/x/sys v0.0.0-20190626221950-04f50cda93cb h1:fgwFCsaw9buMuxNd6+DQfAuSF golang.org/x/sys v0.0.0-20190626221950-04f50cda93cb/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk= -golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20181130052023-1c3d964395ce/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= diff --git a/protector.go b/protector.go index 8b8d2dd..ed63a69 100644 --- a/protector.go +++ b/protector.go @@ -1,41 +1,18 @@ package pnet import ( - "fmt" - "io" + "errors" "net" ipnet "github.com/libp2p/go-libp2p-core/pnet" ) -var _ ipnet.Protector = (*protector)(nil) - -// NewProtector creates ipnet.Protector instance from a io.Reader stream -// that should include Multicodec encoded V1 PSK. -func NewProtector(input io.Reader) (ipnet.Protector, error) { - psk, err := decodeV1PSK(input) - if err != nil { - return nil, fmt.Errorf("malformed private network key: %s", err) +// NewProtectedConn creates a new protected connection +func NewProtectedConn(psk ipnet.PSK, conn net.Conn) (net.Conn, error) { + if len(psk) != 32 { + return nil, errors.New("expected 32 byte PSK") } - return NewV1ProtectorFromBytes(psk) -} - -// NewV1ProtectorFromBytes creates ipnet.Protector of the V1 version. -func NewV1ProtectorFromBytes(psk *[32]byte) (ipnet.Protector, error) { - return &protector{ - psk: psk, - fingerprint: fingerprint(psk), - }, nil -} - -type protector struct { - psk *[32]byte - fingerprint []byte -} - -func (p protector) Protect(in net.Conn) (net.Conn, error) { - return newPSKConn(p.psk, in) -} -func (p protector) Fingerprint() []byte { - return p.fingerprint + var p [32]byte + copy(p[:], psk) + return newPSKConn(&p, conn) } diff --git a/psk_conn_test.go b/psk_conn_test.go index 23108f4..f807b18 100644 --- a/psk_conn_test.go +++ b/psk_conn_test.go @@ -8,16 +8,15 @@ import ( "testing" ) -var testPSK = [32]byte{} // null bytes are as good test key as any other key - func setupPSKConns(ctx context.Context, t *testing.T) (net.Conn, net.Conn) { + testPSK := make([]byte, 32) // null bytes are as good test key as any other key conn1, conn2 := net.Pipe() - psk1, err := newPSKConn(&testPSK, conn1) + psk1, err := NewProtectedConn(testPSK, conn1) if err != nil { t.Fatal(err) } - psk2, err := newPSKConn(&testPSK, conn2) + psk2, err := NewProtectedConn(testPSK, conn2) if err != nil { t.Fatal(err) }