├── .gitignore
├── Makefile
├── README.md
├── package.json
├── shadow-cljs.edn
└── src
    └── mesh
        ├── main.cljs
        └── web.cljs


/.gitignore:
--------------------------------------------------------------------------------
1 | .*.swp
2 | .shadow-cljs
3 | /*.js
4 | node_modules
5 | webrtc-signaling-mesh
6 | workspace
7 | 


--------------------------------------------------------------------------------
/Makefile:
--------------------------------------------------------------------------------
1 | webrtc-signaling-mesh: build.js
2 | 	echo "#!/usr/bin/env node" > $@
3 | 	npx browserify --node build.js | npx uglifyjs >> $@
4 | 	chmod 755 $@
5 | 
6 | build.js: src/**/*.cljs shadow-cljs.edn
7 | 	npx shadow-cljs release artifact
8 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | 🚧 Under construction. Please check back later.
 2 | 
 3 |  * Problem: WebRTC signaling is centralized.
 4 |  * Solution: a decentralized mesh of WebRTC signaling servers.
 5 | 
 6 | # Quickstart: [run a node](#run-a-node)
 7 | 
 8 | Web browsers can send messages directly peer-to-peer using WebRTC. This gives us a way to build decentralized web applications where browsers (peers) can communicate directly without a trusted third-party server in between. Unfortunately the WebRTC connection phase requires centralized services for establishing the route between peers, NAT hole-punching, and negotiating the connection. These centralized must provide a signalling protocol, STUN, and sometimes TURN connectivity, which makes them a single point of failure in peer-to-peer web applications.
 9 | 
10 | This server provides a solution to this problem. It uses the bittorrent DHT to find other server nodes and then forms a mesh that client browsers can use to coordinate WebRTC connectivity in a decentralized, trust-minimised way. It additionally provides a STUN and TURN service that clients can also use.
11 | 
12 | Server nodes are protected from becoming overloaded by a proof-of-work requirement on clients. As load increases on a server the proof-of-work they require from clients increases, and clients can use this signal to select for nodes which are under less load, thereby ensuring better service and distribution of traffic over the network.
13 | 
14 | # Run a node
15 | 
16 | ...
17 | 
18 | <!--
19 | 
20 | It also includes other facilities useful for building decentralized web applications:
21 | 
22 |  * IP
23 |  * DHT mutable get
24 |  * STUN & TURN
25 | 
26 | # Quick start
27 | 
28 | If you just want to use the signaling mesh to make your own p2p WebRTC connections you can do so with the client library `sigmesh`.
29 | 
30 | # Design
31 | 
32 | ### PoW
33 | 
34 | # Why PoW?
35 | 
36 | Good fences make good neighbours. PoW is now a well established mechanism in distributed security for 
37 | 
38 | The purpose of PoW in this system is twofold:
39 | 
40 |  * Protect nodes from abuse
41 |  * Auction based mechanism
42 | 
43 | -->
44 | 
45 | # API
46 | 
47 |  * `/` - returns server's hash token and current PoW height requirement.
48 |  * `/nodes` - returns a random selection of recently seen nodes `["https://...", "https://..." ...]`.
49 |  * `/ip` - returns the requesting client's IP address as seen by this node.
50 |  * `/dht-get` - make a BitTorrent DHT mutable get request.
51 |  * `/dht-put` - make a BitTorrent DHT mutable put request.
52 |  * `/token` - obtain a TURN server authentication token by sending sufficient PoW.
53 |  * `/room/HASH` - server-sent-event signaling channel where all posts to a particular hash are broadcast to all nodes connected to that hash.
54 | 
55 | If `content-type` is set to `json` then JSON data will be returned, otherwise an HTML summary will be returned.
56 | 
57 | Post size is limited to 1k, and every post requires PoW.
58 | 
59 | PoW is proportional to `max(cpu, mem)`. Additional PoW is required for every message sent in the past minute to the `/room/HASH` endpoint.
60 | 
61 | A STUN & TURN server are also run. Authentication tokens for the STUN/TURN server can be obtained from the `/token` endpoint.
62 | 
63 | PoW tokens are generated against a time-stamped HMAC of the server secret which the server can use to establish recency.
64 | 


--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "dependencies": {
 3 |     "bittorrent-dht": "^9.0.3",
 4 |     "bittorrent-protocol": "^3.1.1",
 5 |     "browserify": "^16.5.0",
 6 |     "cookie-parser": "^1.4.5",
 7 |     "express": "^4.17.1",
 8 |     "express-ws": "^4.0.0",
 9 |     "shadow-cljs": "^2.11.12",
10 |     "uglify-es": "^3.3.9"
11 |   }
12 | }
13 | 


--------------------------------------------------------------------------------
/shadow-cljs.edn:
--------------------------------------------------------------------------------
 1 | {:source-paths ["src"]
 2 |  :dependencies []
 3 |  :builds {:app {:target :node-script
 4 |                 :output-to "server.js"
 5 |                 :main mesh.main/main!
 6 |                 :devtools {:after-load mesh.main/reload!}}
 7 |           :artifact {:target :node-script
 8 |                      :output-to "build.js"
 9 |                      :main mesh.main/main!}}}
10 | 
11 | 


--------------------------------------------------------------------------------
/src/mesh/main.cljs:
--------------------------------------------------------------------------------
 1 | (ns mesh.main
 2 |   (:require
 3 |     [mesh.web :as web]
 4 |     ;[mesh.bittorrent :as bt]
 5 |     ;[mesh.util :as util]
 6 |     [cljs.core.async :refer (go <!) :as async]
 7 |     [cljs.core.async.interop :refer-macros [<p!]]))
 8 | 
 9 | (defonce app (web/create))
10 | 
11 | (defn setup-routes [app]
12 |   (.use app "/" (fn [req res] (.json res true))))
13 | 
14 | (defn reload! []
15 |   (web/reset-routes app)
16 |   (setup-routes app)
17 |   (println "Fresh routes loaded: " (aget app "_router" "stack" "length")))
18 | 
19 | (defn main! []
20 |   (web/serve app)
21 |   ;(bt/serve app)
22 |   ;(stun/serve app)
23 |   (reload!)
24 |   (println "Servers started."))
25 | 


--------------------------------------------------------------------------------
/src/mesh/web.cljs:
--------------------------------------------------------------------------------
 1 | (ns mesh.web
 2 |   (:require
 3 |     [shadow.resource :as rc]
 4 |     ["path" :as path]
 5 |     ["process" :as process]
 6 |     ["express" :as express]
 7 |     ["cookie-parser" :as cookies]
 8 |     ["body-parser" :as body-parser]
 9 |     ;["morgan" :as morgan]
10 |     ;["rotating-file-stream" :as rfs]
11 |     ))
12 | 
13 | ; fata errors should bail and notify the user
14 | (defn bail [msg]
15 |   (js/console.error msg)
16 |   (js/console.error "WebRTC Signaling Mesh exit.")
17 |   (js/process.exit 1))
18 | 
19 | (defn add-default-middleware [app]
20 |   ; set up logging
21 |   #_ (let [logs (str js/__dirname "/logs")
22 |         access-log (rfs "access.log" #js {:interval "7d" :path logs})]
23 |     (.use app (morgan "combined" #js {:stream access-log})))
24 |   ; configure sane server defaults
25 |   (.set app "trust proxy" "loopback")
26 |   (.use app (cookies))
27 |   ; json body parser
28 |   (.use app (.json body-parser))
29 |   app)
30 | 
31 | (defn add-default-routes [app]
32 |   ; none yet here
33 |   ;(.use app "/" (serve-static (path/join js/__dirname ".." "public")))
34 |   app)
35 | 
36 | (defn reset-routes [app]
37 |   (let [router app._router]
38 |     (when router
39 |       (print (str "Deleting " (aget app "_router" "stack" "length") " routes"))
40 |       (set! app._router nil))
41 |     (-> app
42 |         (add-default-middleware)
43 |         (add-default-routes))))
44 | 
45 | (defn create []
46 |   (-> (express)
47 |       (add-default-middleware)
48 |       (add-default-routes)))
49 | 
50 | (defn serve [app]
51 |   (let [host (or (aget js/process.env "BIND_ADDRESS") "127.0.0.1")
52 |         port (or (aget js/process.env "PORT") "8000")
53 |         srv (.bind (aget app "listen") app port host)]
54 |     (srv (fn [] (js/console.log "Web server started: " (str "http://" host ":" port))))))
55 | 


--------------------------------------------------------------------------------