# Waku Switch utils. {.push raises: [TLSStreamProtocolError, IOError, Defect].} import std/[options, sequtils, strutils], chronos, chronicles, stew/byteutils, eth/keys, libp2p/crypto/crypto, libp2p/protocols/pubsub/gossipsub, libp2p/nameresolving/dnsresolver, libp2p/nameresolving/nameresolver, libp2p/builders, libp2p/transports/[transport, tcptransport, wstransport] proc withWsTransport*(b: SwitchBuilder): SwitchBuilder = b.withTransport(proc(upgr: Upgrade): Transport = WsTransport.new(upgr)) proc getSecureKey(path : string): TLSPrivateKey {.raises: [Defect,TLSStreamProtocolError, IOError].} = trace "Key path is.", path=path var stringkey: string = readFile(path) try: let key = TLSPrivateKey.init(stringkey) return key except TLSStreamProtocolError as exc: debug "exception raised from getSecureKey", msg=exc.msg proc getSecureCert(path : string): TLSCertificate {.raises: [Defect,TLSStreamProtocolError, IOError].} = trace "Certificate path is.", path=path var stringCert: string = readFile(path) try: let cert = TLSCertificate.init(stringCert) return cert except TLSStreamProtocolError as exc: debug "exception raised from getSecureCert", msg=exc.msg proc withWssTransport*(b: SwitchBuilder, secureKeyPath: string, secureCertPath: string): SwitchBuilder = let key : TLSPrivateKey = getSecureKey(secureKeyPath) let cert : TLSCertificate = getSecureCert(secureCertPath) b.withTransport(proc(upgr: Upgrade): Transport = WsTransport.new(upgr, tlsPrivateKey = key, tlsCertificate = cert, {TLSFlags.NoVerifyHost, TLSFlags.NoVerifyServerName})) proc newWakuSwitch*( privKey = none(crypto.PrivateKey), address = MultiAddress.init("/ip4/127.0.0.1/tcp/0").tryGet(), wsAddress = none(MultiAddress), secureManagers: openarray[SecureProtocol] = [ SecureProtocol.Noise, ], transportFlags: set[ServerFlags] = {}, rng = crypto.newRng(), inTimeout: Duration = 5.minutes, outTimeout: Duration = 5.minutes, maxConnections = MaxConnections, maxIn = -1, maxOut = -1, maxConnsPerPeer = MaxConnectionsPerPeer, nameResolver: NameResolver = nil, sendSignedPeerRecord = false, wssEnabled: bool = false, secureKeyPath: string = "", secureCertPath: string = ""): Switch {.raises: [Defect,TLSStreamProtocolError,IOError, LPError].} = var b = SwitchBuilder .new() .withRng(rng) .withMaxConnections(maxConnections) .withMaxIn(maxIn) .withMaxOut(maxOut) .withMaxConnsPerPeer(maxConnsPerPeer) .withMplex(inTimeout, outTimeout) .withNoise() .withTcpTransport(transportFlags) .withNameResolver(nameResolver) .withSignedPeerRecord(sendSignedPeerRecord) if privKey.isSome(): b = b.withPrivateKey(privKey.get()) if wsAddress.isSome(): b = b.withAddresses(@[wsAddress.get(), address]) if wssEnabled: b = b.withWssTransport(secureKeyPath, secureCertPath) else: b = b.withWsTransport() else : b = b.withAddress(address) b.build()