Tradle's P2P OTR-based chat with plaintext and structured messages, and the ability to externalize messages onto a blockchain (currently bitcoin's)
TiM is Tradle's SDK that provides real-time messaging with an option for messages to be sealed on the blockchain. Mesages can be plain or structured messages. TiM is designed to work on mobiles, desktops and servers. Having one code base is important to minimize security reviews.
TiM is designed to work with intermittent connections, common on mobile devices. For that it keeps an internal log of all actions and events, and resumes operations as soon as network connection is restored.
TiM's operations are covered by a patent. The tatent is filed only for defensive purposes, so you are welcome to use it in your open source projects.
this module is used by Tradle
this npm module's name was graciously donated by Sean Robertson
TiM provides a higher level API to a number of low level Tradle components. A UI is developed separately. Currently we focus on React Native based UI (on iOS, the Android version of TiM is in works), see the preview video and the screenshots.
Prior to React Native, we developed the UI for Tim as a Chrome App, see this Identity verification video and a work completion video. And prior to that we developed a very cool node-webkit-based craigslist on-chain concept app on TiM, but it is very much behind now. We plan work on desktop version of TiM soon, let us know if you are interested in these environments and we will prioritize this work for you.
Zlorp is just the core chat module. It uses OTR for secure sessions (later will add support for Axolotl, used in TextSecure and Pond). Peer discovery today is done via bittorrent-dht. But DHT's regular announce messages leak IP/Port, so we will see if we can use BEP 44 to encrypt them. Zlorp provides UDP NAT traversal (firewall hole-punching), and a direct connection via rUDP (later via uTP). We plan to further investigate anonymous packet delivery, possibly via I2P (TOR does not support UDP).
Bitkeeper module uses WebTorrent for storing and ensuring replication of arbitrary files. In Tradle, bitkeeper is used to store the original (encrypted) versions of on-chain objects (structured messages).
Chained-obj is object builder and parser. Currently uses multipart to store arbitrary JSON data + attachments. These objects are later encrypted and put on-chain.
A collection of requests that can be used to put an object "on chain": encrypt an object for its recipients, store/seed it from a bitkeeper node and put private links on blockchain.
Wait for it...a bunch of constants
A small set of crypto and torrent-related functions used by a number of Tradle components
Identity is wrapper around an OpenName-compatible Identity schema. Used for building/parsing/validating identity objects.
kiki Wrappers for DSA, EC, Bitcoin and other keys to provide a common API for signing/verifying/importing/exporting.
Parses bitcoin transactions, attempts to process embedded links, loads intermediate files and original files from a bitkeeper node, decrypts and returns files and metadata. Implements stream.Transform.
One-key common blockchain based wallet.
For building/parsing bitcoin-transaction-embedded data
Plugin-based verifier for on-chain objects. Implements several default plugins:
Signature Check
Identity verification
Previous Version verification
This module uses a datalog, a log-based database of experienced activity that you can write to and use to bootstrap your own databases from.
Details to follow
When you want to communicate with someone else on the network, you need to identify them uniquely. You can identify them by a fingerprint of one of their public keys, a public key string, or by their identity's root hash:
// if this is the identity of your friend Bill:
{
"_t": "tradle.Identity",
"pubkeys": [
{
"fingerprint": "mvDNdZFbCCmnAPCBmLY91LnfKWoMH39Q2c",
"networkName": "testnet",
"purpose": "payment",
"type": "bitcoin",
"value": "03a45ede4be12a812e6e2ef1650ecbd8900152b1c6e3fe47f427ee5d9323759fe3"
}
]
}
// the following are equivalent identifiers for Bill:
{
fingerprint: 'mvDNdZFbCCmnAPCBmLY91LnfKWoMH39Q2c'
}
{
_r: 'whatever the infoHash of the above JSON object is'
}
var path = require('path')
var levelup = require('levelup')
var leveldown = require('leveldown') // or asyncstorage-down or whatever you're using
var Blockchain = require('cb-blockr') // use tradle/cb-blockr fork
var Identity = require('@tradle/identity').Identity
var defaultKeySet = require('@tradle/identity').defaultKeySet
var Keeper = require('@tradle/http-keeper')
var Tim = require('tim')
// Setup components:
var networkName = 'testnet'
var blockchain = new Blockchain(networkName)
// Create an identity or load an existing one (see tradle/identity readme):
var jack = new Identity()
var jackPrivKeys = defaultKeySet({ networkName: networkName })
jackPrivKeys.forEach(jack.addKey, jack)
// to export private keys: jackPrivKeys.forEach(k => k.exportPrivate())
// to export public identity: jack.toJSON()
var myDir = path.join(process.env.HOME, 'myTradle')
// content-address storage for your encrypted messages
var keeper = new Keeper({
db: levelup(path.resolve(myDir, 'keeper'), { db: leveldown, valueEncoding: 'binary' }),
fallbacks: ['http://tradle.io:25667']
})
// the API
var tim = new Tim({
pathPrefix: path.join(myDir, 'tim'), // for playing nice with other levelup-based storage
leveldown: leveldown,
networkName: networkName,
identity: jack,
keys: jackPrivKeys,
keeper: keeper,
blockchain: blockchain,
// optional
syncInterval: 600000 // how often to bother cb-blockr
})
// define a _send function that will determine the transport to use
// to deliver a message to a particular recipient
tim._send = function (recipientRootHash, msg, recipientInfo) {
// return a Promise that resolves when the message is delivered
// e.g. tim2.receiveMsg(msg, { _r: recipientRootHash })
//
// tradle has several network-adapters for message delivery that you can use here.
// They are all open source on Github:
// tradle/zlorp - pure p2p messaging with OTR over UDP
// tradle/http-client & tradle/http-server
// tradle/ws-client & tradle/ws-relay - OTR over websockets
//
// latest, but unstable:
// tradle/sendy, tradle/sendy-otr
// reliable delivery over network of choice.
// websockets implementation: tradle/sendy-ws, tradle/sendy-ws-relay
}
tim.send({
to: [{ fingerprint: 'one of their fingerprints' }],
msg: { hey: 'ho' },
deliver: true,
chain: false
})
tim.publishMyIdentity()
tim.send({
msg: Object|Buffer,
// record message on chain
chain: true,
// send message p2p
deliver: true,
to: [
identityIdentitifier // see Identity Identifiers
]
})
var constants = require('@tradle/constants')
var curHash = '...' // the infoHash of the existing message, see tradle/utils `getStorageKeyFor`
var shareOpts = {
// record message on chain
chain: true,
// send message p2p
deliver: true,
to: [
identityIdentitifier // see Identity Identifiers
]
}
shareOpts[constants.CUR_HASH] = curHash
tim.share(shareOpts)
Same as sending a message, but use tim.publish instead of tim.send
tim.publish({
msg: Object|Buffer,
to: [
identityIdentitifier // see Identity Identifiers
]
})
var db = tim.messages() // read-only levelup instance
// e.g.
db.createValueStream()
.on('data', function (err, msg) {
// issue tim.lookupObject(msg) to get decrypted metadata and contents
})
var db = tim.identities() // read-only levelup instance
// e.g.
db.createValueStream()
.on('data', function (err, identityJSON) {
// do something with "identity"
// console.log('yo', identityJSON.name.firstName)
})
// additional convenience methods
db.byRootHash(identityRootHash, callback)
db.byFingerprint(fingerprint, callback)
Tim's ready to do stuff
An object was successfully put on chain1
An object was read off chain1
A message was received peer-to-peer1
A message was delivered1
An object was both received peer-to-peer and read from the chain1
1 Note: does NOT contain chained-object contents. Use tim.lookupObject(info) to obtain those.
FAQs
Tradle's P2P OTR-based chat with plaintext and structured messages, and the ability to externalize messages onto a blockchain (currently bitcoin's)
The npm package tim receives a total of 16 weekly downloads. As such, tim popularity was classified as not popular.
We found that tim demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Create React App is officially deprecated due to React 19 issues and lack of maintenance—developers should switch to Vite or other modern alternatives.
Security News
Oracle seeks to dismiss fraud claims in the JavaScript trademark dispute, delaying the case and avoiding questions about its right to the name.
Security News
The Linux Foundation is warning open source developers that compliance with global sanctions is mandatory, highlighting legal risks and restrictions on contributions.