1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106
//! Communicate with authenticated peers over encrypted connections.
//!
//! commonware-p2p provides encrypted, multiplexed communication between fully-connected peers
//! identified by a developer-specified cryptographic identity (i.e. BLS, ed25519, etc.). Unlike
//! most p2p crates, commonware-p2p implements its own encrypted transport layer (no TLS) that
//! exclusively uses said cryptographic identities to authenticate incoming connections (dropping
//! any that aren't explicitly authorized). Peer discovery occurs automatically using ordered bit
//! vectors (sorted by authorized cryptographic identities) to efficiently communicate knowledge
//! of dialable peers.
//!
//! # Status
//!
//! `commonware-p2p` is **ALPHA** software and is not yet recommended for production use. Developers should
//! expect breaking changes and occasional instability.
//!
//! # Features
//!
//! * No TLS, No X.509 Certificates, No Protocol Negotiation
//! * ChaCha20-Poly1305 Stream Encryption
//! * Arbitrary Cryptographic Peer Identities
//! * Automatic Peer Discovery Using Bit Vectors (Used as Ping/Pongs)
//! * Multiplexing With Configurable Rate Limiting Per Channel and Send Prioritization
//! * Emebdded Message Chunking
//! * Metrics via Prometheus
//!
//! # Example
//!
//! ```rust
//! use commonware_p2p::{
//! crypto::{Crypto, ed25519},
//! Config, Network,
//! };
//! use governor::Quota;
//! use prometheus_client::registry::Registry;
//! use std::net::{IpAddr, Ipv4Addr, SocketAddr};
//! use std::num::NonZeroU32;
//! use std::sync::{Arc, Mutex};
//!
//! #[tokio::main]
//! async fn main() {
//! // Generate identity
//! //
//! // In production use, the signer should be generated from a secure source of entropy.
//! let signer = ed25519::insecure_signer(0);
//!
//! // Generate peers
//! //
//! // In production use, peer identities will be provided by some external source of truth
//! // (like the staking set of a blockchain).
//! let peer1 = ed25519::insecure_signer(1).me();
//! let peer2 = ed25519::insecure_signer(2).me();
//! let peer3 = ed25519::insecure_signer(3).me();
//!
//! // Configure bootstrappers
//! //
//! // In production use, it is likely that the address of bootstrappers will be some public address.
//! let bootstrappers = vec![(peer1.clone(), SocketAddr::new(IpAddr::V4(Ipv4Addr::LOCALHOST), 3001))];
//!
//! // Configure network
//! //
//! // In production use, it is not recommended to allow private IPs.
//! let registry = Arc::new(Mutex::new(Registry::with_prefix("p2p")));
//! let config = Config::default(
//! signer.clone(),
//! registry,
//! SocketAddr::new(IpAddr::V4(Ipv4Addr::LOCALHOST), 3000),
//! bootstrappers,
//! true,
//! );
//! let (mut network, oracle) = Network::new(config);
//!
//! // Register authorized peers
//! //
//! // In production use, this would be updated as new peer sets are created (like when
//! // the composition of a validator set changes).
//! oracle.register(0, vec![signer.me(), peer1, peer2, peer3]);
//!
//! // Register some channel
//! let (sender, receiver) = network.register(0, Quota::per_second(NonZeroU32::new(1).unwrap()), 1024, 128);
//!
//! // Run network
//! let network_handler = tokio::spawn(network.run());
//!
//! // ... Use sender and receiver ...
//!
//! // Shutdown network
//! network_handler.abort();
//! }
//! ```
mod actors;
mod channels;
mod config;
mod connection;
mod ip;
mod metrics;
mod network;
mod wire {
include!(concat!(env!("OUT_DIR"), "/wire.rs"));
}
pub mod crypto;
pub use actors::tracker::Oracle;
pub use channels::{Message, Receiver, Sender};
pub use config::{Bootstrapper, Config};
pub use network::Network;