libp2p-secio
Advanced tools
SECIO implementation in JavaScript
This repo contains the JavaScript implementation of secio, an encryption protocol used in libp2p. This is based on this go implementation.
npm install libp2p-secio
const secio = require('libp2p-secio')
.tagThe current secio tag, usable in multistream.
const encryptedConnection = secio.encrypt(localPeerId, plainTextConnection [, remotePeerId] [, callback])localPeerId: PeerId - A PeerId object containing the Private, Public and Id of our node.plainTextConnection: Connection - The insecure connection to be secured.remotePeerId: PeerId - A PeerId object containing the Public and/or Id of the node we are doing the SECIO handshake with.callback: Function - Optional, Called if an error happens during the initialization.Returns an encrypted Connection object that is the upgraded plainTextConnection with now having every byte encripted.
Both plainTextConnection and encryptedConnection are at their base, PullStreams.
pull-streamsWe expose a streaming interface based on pull-streams, rather then on the Node.js core streams implementation (aka Node.js streams). pull-streams offers us a better mechanism for error handling and flow control guarantees. If you would like to know more about why we did this, see the discussion at this issue.
You can learn more about pull-streams at:
pull-streams to Node.js StreamsIf you are a Node.js streams user, you can convert a pull-stream to a Node.js stream using the module pull-stream-to-stream, giving you an instance of a Node.js stream that is linked to the pull-stream. For example:
const pullToStream = require('pull-stream-to-stream')
const nodeStreamInstance = pullToStream(pullStreamInstance)
// nodeStreamInstance is an instance of a Node.js Stream
To learn more about this utility, visit https://pull-stream.github.io/#pull-stream-to-stream.
Feel free to join in. All welcome. Open an issue!
This repository falls under the IPFS Code of Conduct.
FAQs
Secio implementation in JavaScript
The npm package libp2p-secio receives a total of 296 weekly downloads. As such, libp2p-secio popularity was classified as not popular.
We found that libp2p-secio demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.