npm - react-native-nitro-net - Versions diffs - 0.2.0 → 0.3.1 - Mend

react-native-nitro-net 0.2.0 → 0.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (83) hide show

package/README.md +70 -12
package/android/libs/arm64-v8a/librust_c_net.so +0 -0
package/android/libs/armeabi-v7a/librust_c_net.so +0 -0
package/android/libs/x86/librust_c_net.so +0 -0
package/android/libs/x86_64/librust_c_net.so +0 -0
package/cpp/HybridHttpParser.hpp +67 -0
package/cpp/HybridNetDriver.hpp +6 -0
package/cpp/HybridNetServerDriver.hpp +7 -0
package/cpp/HybridNetSocketDriver.hpp +27 -0
package/cpp/NetBindings.hpp +15 -0
package/ios/Frameworks/RustCNet.xcframework/Info.plist +5 -5
package/ios/Frameworks/RustCNet.xcframework/ios-arm64/RustCNet.framework/RustCNet +0 -0
package/ios/Frameworks/RustCNet.xcframework/ios-arm64_x86_64-simulator/RustCNet.framework/RustCNet +0 -0
package/lib/Driver.d.ts +1 -0
package/lib/Driver.d.ts.map +1 -0
package/lib/Driver.js +2 -5
package/lib/Net.nitro.d.ts +20 -0
package/lib/Net.nitro.d.ts.map +1 -0
package/lib/Net.nitro.js +4 -7
package/lib/http.d.ts +204 -0
package/lib/http.d.ts.map +1 -0
package/lib/http.js +1126 -0
package/lib/https.d.ts +25 -0
package/lib/https.d.ts.map +1 -0
package/lib/https.js +102 -0
package/lib/index.d.ts +41 -160
package/lib/index.d.ts.map +1 -0
package/lib/index.js +11 -821
package/lib/net.d.ts +197 -0
package/lib/net.d.ts.map +1 -0
package/lib/net.js +875 -0
package/lib/tls.d.ts +23 -1
package/lib/tls.d.ts.map +1 -0
package/lib/tls.js +108 -54
package/nitrogen/generated/android/RustCNet+autolinking.cmake +2 -0
package/nitrogen/generated/android/RustCNetOnLoad.cpp +2 -0
package/nitrogen/generated/android/c++/JHybridHttpParserSpec.cpp +54 -0
package/nitrogen/generated/android/c++/JHybridHttpParserSpec.hpp +65 -0
package/nitrogen/generated/android/c++/JHybridNetDriverSpec.cpp +9 -0
package/nitrogen/generated/android/c++/JHybridNetDriverSpec.hpp +1 -0
package/nitrogen/generated/android/c++/JHybridNetServerDriverSpec.cpp +4 -0
package/nitrogen/generated/android/c++/JHybridNetServerDriverSpec.hpp +1 -0
package/nitrogen/generated/android/c++/JHybridNetSocketDriverSpec.cpp +9 -0
package/nitrogen/generated/android/c++/JHybridNetSocketDriverSpec.hpp +2 -0
package/nitrogen/generated/android/c++/JNetConfig.hpp +7 -3
package/nitrogen/generated/android/kotlin/com/margelo/nitro/net/HybridHttpParserSpec.kt +58 -0
package/nitrogen/generated/android/kotlin/com/margelo/nitro/net/HybridNetDriverSpec.kt +4 -0
package/nitrogen/generated/android/kotlin/com/margelo/nitro/net/HybridNetServerDriverSpec.kt +4 -0
package/nitrogen/generated/android/kotlin/com/margelo/nitro/net/HybridNetSocketDriverSpec.kt +8 -0
package/nitrogen/generated/android/kotlin/com/margelo/nitro/net/NetConfig.kt +6 -3
package/nitrogen/generated/ios/RustCNet-Swift-Cxx-Bridge.cpp +17 -0
package/nitrogen/generated/ios/RustCNet-Swift-Cxx-Bridge.hpp +26 -0
package/nitrogen/generated/ios/RustCNet-Swift-Cxx-Umbrella.hpp +5 -0
package/nitrogen/generated/ios/c++/HybridHttpParserSpecSwift.cpp +11 -0
package/nitrogen/generated/ios/c++/HybridHttpParserSpecSwift.hpp +79 -0
package/nitrogen/generated/ios/c++/HybridNetDriverSpecSwift.hpp +11 -0
package/nitrogen/generated/ios/c++/HybridNetServerDriverSpecSwift.hpp +6 -0
package/nitrogen/generated/ios/c++/HybridNetSocketDriverSpecSwift.hpp +14 -0
package/nitrogen/generated/ios/swift/HybridHttpParserSpec.swift +56 -0
package/nitrogen/generated/ios/swift/HybridHttpParserSpec_cxx.swift +131 -0
package/nitrogen/generated/ios/swift/HybridNetDriverSpec.swift +1 -0
package/nitrogen/generated/ios/swift/HybridNetDriverSpec_cxx.swift +15 -0
package/nitrogen/generated/ios/swift/HybridNetServerDriverSpec.swift +1 -0
package/nitrogen/generated/ios/swift/HybridNetServerDriverSpec_cxx.swift +11 -0
package/nitrogen/generated/ios/swift/HybridNetSocketDriverSpec.swift +2 -0
package/nitrogen/generated/ios/swift/HybridNetSocketDriverSpec_cxx.swift +36 -0
package/nitrogen/generated/ios/swift/NetConfig.swift +19 -1
package/nitrogen/generated/shared/c++/HybridHttpParserSpec.cpp +21 -0
package/nitrogen/generated/shared/c++/HybridHttpParserSpec.hpp +63 -0
package/nitrogen/generated/shared/c++/HybridNetDriverSpec.cpp +1 -0
package/nitrogen/generated/shared/c++/HybridNetDriverSpec.hpp +4 -0
package/nitrogen/generated/shared/c++/HybridNetServerDriverSpec.cpp +1 -0
package/nitrogen/generated/shared/c++/HybridNetServerDriverSpec.hpp +1 -0
package/nitrogen/generated/shared/c++/HybridNetSocketDriverSpec.cpp +2 -0
package/nitrogen/generated/shared/c++/HybridNetSocketDriverSpec.hpp +2 -0
package/nitrogen/generated/shared/c++/NetConfig.hpp +6 -2
package/package.json +9 -7
package/src/Net.nitro.ts +17 -0
package/src/http.ts +1303 -0
package/src/https.ts +125 -0
package/src/index.ts +13 -874
package/src/net.ts +1005 -0
package/src/tls.ts +82 -6

package/src/tls.ts CHANGED Viewed

@@ -1,7 +1,14 @@
-import { Socket, Server as NetServer, SocketOptions } from './index'
+import { Socket, Server as NetServer, SocketOptions, isVerbose } from './net'
 import { Driver } from './Driver'
 import { NetSocketDriver } from './Net.nitro'
+function debugLog(message: string) {
+    if (isVerbose()) {
+        const timestamp = new Date().toISOString().split('T')[1].split('Z')[0];
+        console.log(`[NET DEBUG ${timestamp}] ${message}`);
+    }
+}
 export interface PeerCertificate {
     subject: { [key: string]: string }
     issuer: { [key: string]: string }
@@ -26,6 +33,13 @@ export interface ConnectionOptions extends SocketOptions {
     pfx?: string | ArrayBuffer
     passphrase?: string
     keylog?: boolean // Enable keylogging (SSLKEYLOGFILE format)
+    /**
+     * Custom hostname verification function.
+     * If provided, it will be called after the TLS handshake to verify the peer certificate.
+     * Return `undefined` if valid, or an `Error` if invalid.
+     * If not provided, the default `checkServerIdentity` is used.
+     */
+    checkServerIdentity?: (hostname: string, cert: PeerCertificate) => Error | undefined
 }
 export interface SecureContextOptions {
@@ -179,7 +193,11 @@ export class TLSSocket extends Socket {
     renegotiate(options: any, callback: (err: Error | null) => void): boolean {
         if (callback) {
-            process.nextTick(() => callback(new Error('Renegotiation is not supported by rustls')));
+            setTimeout(() => {
+                const err = new Error('Renegotiation is not supported by rustls');
+                (err as any).code = 'ERR_TLS_RENEGOTIATION_DISABLED';
+                callback(err);
+            }, 0);
         }
         return false;
     }
@@ -188,6 +206,39 @@ export class TLSSocket extends Socket {
         // No-op, already effectively disabled
     }
+    /**
+     * Enables trace output for this socket.
+     */
+    enableTrace(): void {
+        const driver = (this as any)._driver as NetSocketDriver
+        if (driver) {
+            driver.enableTrace()
+        }
+    }
+    /**
+     * Exports keying material for use by external protocols.
+     *
+     * @param length The number of bytes to return.
+     * @param label A label identifying the keying material.
+     * @param context An optional context.
+     * @returns Buffer containing keying material.
+     * @throws Error if export fails (e.g., TLS not connected).
+     */
+    exportKeyingMaterial(length: number, label: string, context?: Buffer): Buffer {
+        const driver = (this as any)._driver as NetSocketDriver
+        if (driver) {
+            const ctx = context ? new Uint8Array(context).buffer as ArrayBuffer : undefined
+            const result = driver.exportKeyingMaterial(length, label, ctx)
+            if (result) {
+                return Buffer.from(result)
+            }
+        }
+        const err = new Error('exportKeyingMaterial failed: TLS connection may not be established')
+            ; (err as any).code = 'ERR_TLS_EXPORT_KEYING_MATERIAL'
+        throw err
+    }
     constructor(socket: Socket, options?: ConnectionOptions)
     constructor(options: ConnectionOptions)
     constructor(socketOrOptions: Socket | ConnectionOptions, options?: ConnectionOptions) {
@@ -230,6 +281,21 @@ export class TLSSocket extends Socket {
             if (connectionListener) this.once('secureConnect', connectionListener);
             this.once('connect', () => {
+                // After the native TLS handshake, perform hostname verification
+                if (rejectUnauthorized !== false) {
+                    const cert = this.getPeerCertificate() as PeerCertificate;
+                    if (cert && Object.keys(cert).length > 0) {
+                        const verifyFn = (typeof options === 'object' && options.checkServerIdentity)
+                            ? options.checkServerIdentity
+                            : checkServerIdentity;
+                        const verifyErr = verifyFn(servername, cert);
+                        if (verifyErr) {
+                            this.emit('error', verifyErr);
+                            this.destroy(verifyErr);
+                            return;
+                        }
+                    }
+                }
                 this.emit('secureConnect')
             })
@@ -255,14 +321,18 @@ export class TLSSocket extends Socket {
             if (path) {
                 if (secureContextId !== undefined) {
+                    debugLog(`TLSSocket.connect: Calling driver.connectUnixTLSWithContext(${path}, ${servername}, ctx=${secureContextId})`);
                     driver.connectUnixTLSWithContext(path, servername, rejectUnauthorized, secureContextId)
                 } else {
+                    debugLog(`TLSSocket.connect: Calling driver.connectUnixTLS(${path}, ${servername})`);
                     driver.connectUnixTLS(path, servername, rejectUnauthorized)
                 }
             } else {
                 if (secureContextId !== undefined) {
+                    debugLog(`TLSSocket.connect: Calling driver.connectTLSWithContext(${host}, ${port}, ${servername}, ctx=${secureContextId})`);
                     driver.connectTLSWithContext(host, port, servername, rejectUnauthorized, secureContextId)
                 } else {
+                    debugLog(`TLSSocket.connect: Calling driver.connectTLS(${host}, ${port}, ${servername})`);
                     driver.connectTLS(host, port, servername, rejectUnauthorized)
                 }
             }
@@ -323,6 +393,9 @@ export class Server extends NetServer {
                 key: options.key,
                 ca: options.ca
             }).id;
+        } else {
+            // Create empty secure context to allow late configuration (addContext)
+            this._secureContextId = createSecureContext().id;
         }
         this.on('connection', (socket: Socket) => {
@@ -408,12 +481,15 @@ export class Server extends NetServer {
         const driver = (this as any)._driver;
-        if (handle || _path) {
-            console.warn("TLS over Unix sockets/handles not fully implemented yet");
+        if (_path) {
+            driver.listenTLSUnix(_path, this._secureContextId, _backlog);
+        } else if (handle) {
+            console.warn("TLS over handles not fully implemented yet");
+            driver.listenTLS(_port || 0, this._secureContextId, _backlog, ipv6Only, reusePort);
+        } else {
+            driver.listenTLS(_port || 0, this._secureContextId, _backlog, ipv6Only, reusePort);
         }
-        driver.listenTLS(_port || 0, this._secureContextId, _backlog, ipv6Only, reusePort);
         return this;
     }
 }