@reclaimprotocol/attestor-core 5.0.1-beta.21 → 5.0.1-beta.22

package/lib/utils/socket-base.js

@@ -0,0 +1,92 @@
+import { wsMessageHandler } from "../client/utils/message-handler.js";
+import { RPCMessages } from "../proto/api.js";
+import { AttestorError, makeRpcEvent, packRpcMessages } from "./index.js";
+/**
+ * Common AttestorSocket class used on the client & server side as the
+ * base for their respective socket implementations.
+ */
+export class AttestorSocket {
+    eventTarget = new EventTarget();
+    socket;
+    logger;
+    metadata;
+    isInitialised = false;
+    constructor(socket, metadata, logger) {
+        this.socket = socket;
+        this.metadata = metadata;
+        this.logger = logger;
+        // @ts-expect-error - WebSocket type differs between browser and Node.js
+        socket.addEventListener('error', (event) => {
+            const witErr = AttestorError.fromError(event.error || new Error(event.message), 'ERROR_NETWORK_ERROR');
+            this.dispatchRPCEvent('connection-terminated', witErr);
+        });
+        socket.addEventListener('close', () => (this.dispatchRPCEvent('connection-terminated', new AttestorError('ERROR_NO_ERROR', 'connection closed'))));
+        // @ts-expect-error - WebSocket type differs between browser and Node.js
+        socket.addEventListener('message', async (event) => {
+            try {
+                await wsMessageHandler.call(this, event.data);
+            }
+            catch (err) {
+                this.logger.error({ err }, 'error processing message');
+            }
+        });
+    }
+    get isOpen() {
+        return this.socket.readyState === this.socket.OPEN;
+    }
+    get isClosed() {
+        return this.socket.readyState === this.socket.CLOSED
+            || this.socket.readyState === this.socket.CLOSING;
+    }
+    async sendMessage(...msgs) {
+        if (this.isClosed) {
+            throw new AttestorError('ERROR_NETWORK_ERROR', 'Connection closed, cannot send message');
+        }
+        if (!this.isOpen) {
+            throw new AttestorError('ERROR_NETWORK_ERROR', 'Wait for connection to open before sending message');
+        }
+        const msg = packRpcMessages(...msgs);
+        const bytes = RPCMessages.encode(msg).finish();
+        this.logger.trace({ msg }, 'sending messages');
+        if ('sendPromise' in this.socket && this.socket.sendPromise) {
+            await this.socket.sendPromise(bytes);
+        }
+        else {
+            this.socket.send(bytes);
+        }
+        return msg;
+    }
+    dispatchRPCEvent(type, data) {
+        const event = makeRpcEvent(type, data);
+        this.eventTarget.dispatchEvent(event);
+    }
+    addEventListener(type, listener) {
+        this.eventTarget.addEventListener(type, listener);
+    }
+    removeEventListener(type, listener) {
+        this.eventTarget.removeEventListener(type, listener);
+    }
+    async terminateConnection(err) {
+        // connection already closed
+        if (this.isClosed) {
+            return;
+        }
+        try {
+            const witErr = err
+                ? AttestorError.fromError(err)
+                : new AttestorError('ERROR_NO_ERROR', '');
+            this.dispatchRPCEvent('connection-terminated', witErr);
+            if (this.isOpen) {
+                await this.sendMessage({
+                    connectionTerminationAlert: witErr.toProto()
+                });
+            }
+        }
+        catch (err) {
+            this.logger?.error({ err }, 'error terminating connection');
+        }
+        finally {
+            this.socket.close();
+        }
+    }
+}

package/lib/utils/tls.js

@@ -0,0 +1,58 @@
+import { SUPPORTED_NAMED_CURVES } from '@reclaimprotocol/tls';
+import { detectEnvironment } from "./env.js";
+// we only support the following cipher suites
+// for ZK proof generation
+const ZK_CIPHER_SUITES = [
+    // chacha-20
+    'TLS_CHACHA20_POLY1305_SHA256',
+    'TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256',
+    'TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256',
+    // aes-256
+    'TLS_AES_256_GCM_SHA384',
+    'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384',
+    'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384',
+    // aes-128
+    'TLS_AES_128_GCM_SHA256',
+    'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256',
+    'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256',
+    'TLS_RSA_WITH_AES_128_GCM_SHA256'
+];
+const NAMED_CURVE_LIST = detectEnvironment() === 'node'
+    ? SUPPORTED_NAMED_CURVES
+    // X25519 is not supported in the browser
+    : SUPPORTED_NAMED_CURVES.filter(c => c !== 'X25519');
+TLS_ADDITIONAL_ROOT_CA_LIST.push(`-----BEGIN CERTIFICATE-----
+MIIEszCCA5ugAwIBAgIQCyWUIs7ZgSoVoE6ZUooO+jANBgkqhkiG9w0BAQsFADBh
+MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
+d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBH
+MjAeFw0xNzExMDIxMjI0MzNaFw0yNzExMDIxMjI0MzNaMGAxCzAJBgNVBAYTAlVT
+MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j
+b20xHzAdBgNVBAMTFlJhcGlkU1NMIFRMUyBSU0EgQ0EgRzEwggEiMA0GCSqGSIb3
+DQEBAQUAA4IBDwAwggEKAoIBAQC/uVklRBI1FuJdUEkFCuDL/I3aJQiaZ6aibRHj
+ap/ap9zy1aYNrphe7YcaNwMoPsZvXDR+hNJOo9gbgOYVTPq8gXc84I75YKOHiVA4
+NrJJQZ6p2sJQyqx60HkEIjzIN+1LQLfXTlpuznToOa1hyTD0yyitFyOYwURM+/CI
+8FNFMpBhw22hpeAQkOOLmsqT5QZJYeik7qlvn8gfD+XdDnk3kkuuu0eG+vuyrSGr
+5uX5LRhFWlv1zFQDch/EKmd163m6z/ycx/qLa9zyvILc7cQpb+k7TLra9WE17YPS
+n9ANjG+ECo9PDW3N9lwhKQCNvw1gGoguyCQu7HE7BnW8eSSFAgMBAAGjggFmMIIB
+YjAdBgNVHQ4EFgQUDNtsgkkPSmcKuBTuesRIUojrVjgwHwYDVR0jBBgwFoAUTiJU
+IBiV5uNu5g/6+rkS7QYXjzkwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsG
+AQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMDQGCCsGAQUFBwEB
+BCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEIGA1Ud
+HwQ7MDkwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds
+b2JhbFJvb3RHMi5jcmwwYwYDVR0gBFwwWjA3BglghkgBhv1sAQEwKjAoBggrBgEF
+BQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIw
+CAYGZ4EMAQIBMAgGBmeBDAECAjANBgkqhkiG9w0BAQsFAAOCAQEAGUSlOb4K3Wtm
+SlbmE50UYBHXM0SKXPqHMzk6XQUpCheF/4qU8aOhajsyRQFDV1ih/uPIg7YHRtFi
+CTq4G+zb43X1T77nJgSOI9pq/TqCwtukZ7u9VLL3JAq3Wdy2moKLvvC8tVmRzkAe
+0xQCkRKIjbBG80MSyDX/R4uYgj6ZiNT/Zg6GI6RofgqgpDdssLc0XIRQEotxIZcK
+zP3pGJ9FCbMHmMLLyuBd+uCWvVcF2ogYAawufChS/PT61D9rqzPRS5I2uqa3tmIT
+44JhJgWhBnFMb7AGQkvNq9KNS9dd3GWc17H/dXa1enoxzWjE0hBdFjxPhUb0W3wi
+8o34/m8Fxw==
+-----END CERTIFICATE-----` //RapidSSL TLS RSA CA G1
+);
+export function getDefaultTlsOptions() {
+    return {
+        cipherSuites: ZK_CIPHER_SUITES,
+        namedCurves: NAMED_CURVE_LIST,
+    };
+}

package/lib/utils/ws.js

@@ -0,0 +1,22 @@
+export function makeWebSocket(url) {
+    return new WebSocket(url);
+}
+/**
+ * Adds the "sendPromise" fn to the given WebSocket instance,
+ * if not already present.
+ */
+export function promisifySend(ws) {
+    if (ws.sendPromise) {
+        return ws;
+    }
+    ws.sendPromise = (data) => (new Promise((resolve, reject) => {
+        ws.send(data, err => {
+            if (err) {
+                reject(err);
+                return;
+            }
+            resolve();
+        });
+    }));
+    return ws;
+}