Arx/Eve-Relay
2
0
Fork 0
Code Issues 2 Pull requests Projects Releases 1 Packages Wiki Activity Actions

pow all notes

Browse source
This commit is contained in:
Danny Morabito 2025-02-22 14:30:46 +01:00
parent 677fee5205
commit 1f95a4f0c8
Signed by: dannym
GPG key ID: 7CC8056A5A04557E
2 changed files with 31 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
consts.ts Normal file
View file

@ -0,0 +1,20 @@
/**
* Minimum required Proof of Work (PoW) difficulty for note acceptance.
*
* Notes with PoW below this threshold will be rejected without decryption attempts.
* This threshold serves as a DoS protection mechanism for the CCN in case of
* public key compromise.
*/
export const MIN_POW = 8;
/**
* Target Proof of Work (PoW) difficulty for relay-generated notes.
*
* Defines the PoW difficulty level that the relay will compute when generating
* and encrypting its own notes before broadcasting them to the network.
*
* Expected Performance on modern hardware (2025):
* - Difficulty 8: ~1ms
* - Difficulty 21: ~5-6 seconds
*/
export const POW_TO_MINE = 10;

12
index.ts
View file

@ -20,6 +20,7 @@ import { Database } from "jsr:@db/sqlite";
import { mixQuery, sql, sqlPartial } from "./utils/queries.ts"; import { mixQuery, sql, sqlPartial } from "./utils/queries.ts";
import { log, setupLogger } from "./utils/logs.ts"; import { log, setupLogger } from "./utils/logs.ts";
import { getEveFilePath } from "./utils/files.ts"; import { getEveFilePath } from "./utils/files.ts";
import { MIN_POW, POW_TO_MINE } from "./consts.ts";
await setupLogger(); await setupLogger();
@ -111,6 +112,7 @@ async function createEncryptedEvent(
const ccnPubKey = await getCCNPubkey(); const ccnPubKey = await getCCNPubkey();
const ccnPrivateKey = await getCCNPrivateKey(); const ccnPrivateKey = await getCCNPrivateKey();
const randomPrivateKey = nostrTools.generateSecretKey(); const randomPrivateKey = nostrTools.generateSecretKey();
const randomPrivateKeyPubKey = nostrTools.getPublicKey(randomPrivateKey);
const conversationKey = nip44.getConversationKey(randomPrivateKey, ccnPubKey); const conversationKey = nip44.getConversationKey(randomPrivateKey, ccnPubKey);
const sealTemplate = { const sealTemplate = {
kind: 13, kind: 13,
@ -124,8 +126,10 @@ async function createEncryptedEvent(
created_at: randomTimeUpTo2DaysInThePast(), created_at: randomTimeUpTo2DaysInThePast(),
content: nip44.encrypt(JSON.stringify(seal), conversationKey), content: nip44.encrypt(JSON.stringify(seal), conversationKey),
tags: [["p", ccnPubKey]], tags: [["p", ccnPubKey]],
pubkey: randomPrivateKeyPubKey,
}; };
const giftWrap = nostrTools.finalizeEvent(giftWrapTemplate, randomPrivateKey); const minedGiftWrap = nostrTools.nip13.minePow(giftWrapTemplate, POW_TO_MINE);
const giftWrap = nostrTools.finalizeEvent(minedGiftWrap, randomPrivateKey);
return giftWrap; return giftWrap;
} }
@ -138,6 +142,12 @@ async function decryptEvent(
throw new Error("Cannot decrypt event -- not a gift wrap"); throw new Error("Cannot decrypt event -- not a gift wrap");
} }
const pow = nostrTools.nip13.getPow(event.id);
if (pow < MIN_POW) {
throw new Error("Cannot decrypt event -- PoW too low");
}
const conversationKey = nip44.getConversationKey(ccnPrivkey, event.pubkey); const conversationKey = nip44.getConversationKey(ccnPrivkey, event.pubkey);
const seal = JSON.parse(nip44.decrypt(event.content, conversationKey)); const seal = JSON.parse(nip44.decrypt(event.content, conversationKey));
if (!seal) throw new Error("Cannot decrypt event -- no seal"); if (!seal) throw new Error("Cannot decrypt event -- no seal");