mirror of
https://github.com/logos-messaging/logos-messaging-nim.git
synced 2026-01-07 16:33:08 +00:00
8eada1927a
* refactor: reuse nim-libp2p peerstore + move peermanager logic * refactor: fix comments * refactor: modify reconnectPeers and unittest * feat(apps): new flag for peerStoreCapacity * fix(examples): fix example2 target * refactor: fix comments
110 lines
3.4 KiB
Nim
110 lines
3.4 KiB
Nim
# Waku Switch utils.
|
||
when (NimMajor, NimMinor) < (1, 4):
|
||
{.push raises: [Defect].}
|
||
else:
|
||
{.push raises: [].}
|
||
|
||
import
|
||
std/options,
|
||
chronos, chronicles,
|
||
eth/keys,
|
||
libp2p/crypto/crypto,
|
||
libp2p/protocols/pubsub/gossipsub,
|
||
libp2p/nameresolving/nameresolver,
|
||
libp2p/builders,
|
||
libp2p/transports/[transport, tcptransport, wstransport]
|
||
|
||
proc withWsTransport*(b: SwitchBuilder): SwitchBuilder =
|
||
b.withTransport(proc(upgr: Upgrade): Transport = WsTransport.new(upgr))
|
||
|
||
proc getSecureKey(path : string): TLSPrivateKey
|
||
{.raises: [Defect, IOError].} =
|
||
|
||
trace "Key path is.", path=path
|
||
let stringkey: string = readFile(path)
|
||
try:
|
||
let key = TLSPrivateKey.init(stringkey)
|
||
return key
|
||
except TLSStreamProtocolError as exc:
|
||
debug "exception raised from getSecureKey", msg=exc.msg
|
||
|
||
proc getSecureCert(path : string): TLSCertificate
|
||
{.raises: [Defect, IOError].} =
|
||
|
||
trace "Certificate path is.", path=path
|
||
let stringCert: string = readFile(path)
|
||
try:
|
||
let cert = TLSCertificate.init(stringCert)
|
||
return cert
|
||
except TLSStreamProtocolError as exc:
|
||
debug "exception raised from getSecureCert", msg=exc.msg
|
||
|
||
proc withWssTransport*(b: SwitchBuilder,
|
||
secureKeyPath: string,
|
||
secureCertPath: string): SwitchBuilder
|
||
{.raises: [Defect, IOError].} =
|
||
|
||
let key : TLSPrivateKey = getSecureKey(secureKeyPath)
|
||
let cert : TLSCertificate = getSecureCert(secureCertPath)
|
||
b.withTransport(proc(upgr: Upgrade): Transport = WsTransport.new(upgr,
|
||
tlsPrivateKey = key,
|
||
tlsCertificate = cert,
|
||
{TLSFlags.NoVerifyHost, TLSFlags.NoVerifyServerName}))
|
||
|
||
proc newWakuSwitch*(
|
||
privKey = none(crypto.PrivateKey),
|
||
address = MultiAddress.init("/ip4/127.0.0.1/tcp/0").tryGet(),
|
||
wsAddress = none(MultiAddress),
|
||
secureManagers: openarray[SecureProtocol] = [
|
||
SecureProtocol.Noise,
|
||
],
|
||
transportFlags: set[ServerFlags] = {},
|
||
rng = crypto.newRng(),
|
||
inTimeout: Duration = 5.minutes,
|
||
outTimeout: Duration = 5.minutes,
|
||
maxConnections = MaxConnections,
|
||
maxIn = -1,
|
||
maxOut = -1,
|
||
maxConnsPerPeer = MaxConnectionsPerPeer,
|
||
nameResolver: NameResolver = nil,
|
||
sendSignedPeerRecord = false,
|
||
wssEnabled: bool = false,
|
||
secureKeyPath: string = "",
|
||
secureCertPath: string = "",
|
||
agentString = none(string), # defaults to nim-libp2p version,
|
||
peerStoreCapacity = none(int), # defaults to nim-libp2p max size
|
||
): Switch
|
||
{.raises: [Defect, IOError, LPError].} =
|
||
|
||
var b = SwitchBuilder
|
||
.new()
|
||
.withRng(rng)
|
||
.withMaxConnections(maxConnections)
|
||
.withMaxIn(maxIn)
|
||
.withMaxOut(maxOut)
|
||
.withMaxConnsPerPeer(maxConnsPerPeer)
|
||
.withMplex(inTimeout, outTimeout)
|
||
.withNoise()
|
||
.withTcpTransport(transportFlags)
|
||
.withNameResolver(nameResolver)
|
||
.withSignedPeerRecord(sendSignedPeerRecord)
|
||
|
||
if peerStoreCapacity.isSome():
|
||
b = b.withPeerStore(peerStoreCapacity.get())
|
||
if agentString.isSome():
|
||
b = b.withAgentVersion(agentString.get())
|
||
if privKey.isSome():
|
||
b = b.withPrivateKey(privKey.get())
|
||
if wsAddress.isSome():
|
||
b = b.withAddresses(@[wsAddress.get(), address])
|
||
|
||
if wssEnabled:
|
||
b = b.withWssTransport(secureKeyPath, secureCertPath)
|
||
else:
|
||
b = b.withWsTransport()
|
||
|
||
else :
|
||
b = b.withAddress(address)
|
||
|
||
b.build()
|