Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add support for websocket (ws and wss) in bootstrap node #2584

Open
iphydf opened this issue Jan 20, 2024 · 4 comments
Open

Add support for websocket (ws and wss) in bootstrap node #2584

iphydf opened this issue Jan 20, 2024 · 4 comments
Milestone

Comments

@iphydf
Copy link
Member

iphydf commented Jan 20, 2024

This is useful for supporting webtox and later to get around application layer firewalls like the ones in airports that only allow http connections.

We can look into mbed TLS as a library for crypto needed for https/wss. For webtox, that's a requirement. For native tox, we don't need encrypted websockets since we'll be sending tox crypto over it anyway.

@iphydf iphydf added this to the v0.2.x milestone Jan 20, 2024
@emdee-is
Copy link

emdee-is commented Feb 3, 2024

Does websocket (ws and wss) in bootstrap node work over Tor?

If not, and I suspect not, then it raises the question of priority planning in the project: does the project want Tox in Tor more than it wants websockets?

There is a prominent wiki that would be good for project planning on wiki.tox.chat that I think @nurupo maintains, but you would need people to use it, and to prioritize things. (I made an accout there and applied for write permissions by never heard back as I wamted to add some of the pages from my wiki.) There's a lot of outdated information there that needs cleaning up: the people interested in the project must realize that it is the public face of Tox.

The reason I suggest this is because I'm seeing a lot of "rewrite-from-scratch" which can be a planning failure if it's not been thought out (think Netscape) and for that you need discussion in something like a wiki. You can't use NGC for that sort of thing, as you have no history of when you're not connected, and it's susceptible to impersonation JFreegman/toxic#622

@iphydf
Copy link
Member Author

iphydf commented Feb 3, 2024

Yes, it works over tor. Websockets are TCP.

@emdee-is
Copy link

emdee-is commented Feb 3, 2024

Yes, it works over tor. Websockets are TCP.

Yes I know they're TCP but I don't think websockets are easy to run over Tor. I'll check to see, but I think the Tor browser disables them, perhaps because of IP leakage.

To see what it takes to use them over Tor see: https://meejah.ca/blog/end-to-end-encrypted-rpc-over-tor and WAMP https://blog.torproject.org/secure-messaging-onion-services-how/ but I don't think any of that works these days, although I'm no expert at it. Their solution used a clearnet router crossbar.io.

No feeback on the idea of project planning and prioritization?

@emdee-is
Copy link

emdee-is commented Feb 4, 2024

I'll take that as No to the idea of project planning and prioritization.

If the project changes it mind and decides to proritize the work, here is my list of suggestions :

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

No branches or pull requests

2 participants