IPFS Integration

[daviddias]

WIP PR for brave#9556 (comment)

Notes to self (or others that might want to contribute :))

Folder structure

.
├── ...
├── app        # Where the electron's main process things live
│   ├── # ...
│   ├── browser
│   │   ├── # ...
│   │   ├── ipfs.js   # The ipfs instance running on the main process
│   │   ├── # ...
│   │   ├── webtorrent.js  # The webtorrent instance running on the main process
│   │   └── # ...
│   ├── extensions # Where the extensions live, except the actual app that gets rendered to the user
│   │   ├── brave
│   │   ├── ipfs
│   │   └── torrent
│   └── # ...
├── js
│   ├── # ...
│   ├── ipfs # Where the IPFS extension app lives  (renderer process)
│   │   └── entry.js
│   ├── lib # Lot's of utils 
│   │   ├── appUrlUtil.js
│   │   ├── base64.js
│   │   ├── baseDomain.js
│   │   ├── classSet.js
│   │   ├── color.js
│   │   ├── cryptoUtil.js
│   │   ├── debounce.js
│   │   ├── eventUtil.js
│   │   ├── functional.js
│   │   ├── imageUtil.js
│   │   ├── importer.js
│   │   ├── openSearch.js
│   │   ├── promisify.js
│   │   ├── psl.js
│   │   ├── request.js
│   │   ├── text.js
│   │   ├── textCalculator.js
│   │   ├── throttle.js
│   │   ├── urlutil.js
│   │   └── zoom.js
│   └── webtorrent # The WebTorrent app (renderer process)
│       ├── components
│       └── entry.js
└── # ...

[daviddias]

⁉️

[daviddias]

https://developer.chrome.com/apps/manifest/key

[daviddias]

⁉️

[daviddias]

⁉️ Should I do this here?

[daviddias]

I believe I got this code path right (it checks if location starts with dweb: or ipfs://), however, I never managed to get the log on 74 to print.

[daviddias]

🌟 if I get this one to run, I believe I know what to do next :)

[daviddias]

I can confirm that getSetting(settings.IPFS_ENABLED)) prints true, which means that the extension should be loaded.

[daviddias]

Line 537 and 538 do nothing for some reason.

[daviddias]

This prints:
IPFS: is extension enabled true interplanetaryfilesystemuniverse /Users/koruza/code/brave-browser-laptop/app/extensions/ipfs

[daviddias]

@jonathansampson @bridiver @NejcZdovc mind taking a look at what I might be failing when loading this extension?

[bridiver]

I don't think you need all this. You can just create a regular manifest file and pass the path to the directory like non-component extensions

[daviddias]

Turning on tabbycat just started throwing uncaught exceptions:

Have you seen this behaviour?

[jonathansampson]

@diasdavid I have not seen that issue before, but when I ran Tabby Cat in Brave, we didn't have the about:preferences#extensions page. Are you able to share any further information about the Exception itself? Perhaps file/line-number?

You may even be able to break on exception from the Shift+F8 developer tools. Happy to help investigate further if needed.

[daviddias]

🗡 I've slain the first 🐉

[daviddias]

I'm being unable to create an IPFS node as the background process crashes (for some reason) and I have no way to inspect it. Looking for a better way to debug this background extension.

[daviddias]

I added this step to make it simpler to reproduce my local set up.

[daviddias]

Update - Great news everyone!

We have successfully managed to run IPFS from a background process in a Brave Extension, capturing the ipfs:// protocol and resolving an hash from the IPFS network, see the image below for the full result.

The main issue we were facing was that the CSP was blocking our use of eval, which is exactly that @lidel while developing the Chrome and Firefox Web Extension with js-ipfs-api. For now, we removed that restriction for testing purposes but before we merge and release this feature, we want to:

• make sure that we really need to use eval (can we change how the dependency that is injecting it works?)
• if we absolutely need to use eval, can we ensure that it doesn't open any security vulnerability

[daviddias]

Streaming Responses Issue brave#10629

[daviddias]

added the 'unsafe-eval'

[bridiver]

why is that needed? I think @diracdeltas will likely have an issue with it

[diracdeltas]

Unfortunately unsafe-eval removes most of the purpose of having a CSP - please avoid it by refactoring all inline script code into external files.

[daviddias]

Removed it from here. It was not necessary

[daviddias]

In order to support a background page (and not just scripts) had to add manually all the endpoints a js-ipfs node connects on startup. This is a bit of annoyance as it will stop js-ipfs to connect dynamically to other public WebSockets endpoints unless the CSP can be relaxed.

[bridiver]

wss://*?

[daviddias]

oh wow, it actually takes wildcards. I completely had discarded that option.

[bridiver]

I believe the csp you have defined in the page above can be defined here instead

[diracdeltas]

if the CSP is just for the IPFS extension, it should be defined here instead of in index-dev.html. i would still encourage refactoring such that unsafe-eval isn't needed.

[daviddias]

@bridiver when an extension has an index.html page, the extension loader ignores this CSP and applies the one in index.html. So yes, you are right, the index.html one is the only one necessary. My test yielded a false positive, it actually needs to have this in the manifest too.

@diracdeltas agreed that we should not have the need for unsafe-eval. We are working on it :)

[dignifiedquire]

@diasdavid I think the latest version of js-ipfs-api is ready to be tested without evals :)

[daviddias]

Here we just use js-ipfs. It seems that there still something. Need to test this more:

[dignifiedquire]

that is definitely still a protobuf thing

[dignifiedquire]

looks like we missed two modules

npm ls protocol-buffers
[email protected] /Users/dignifiedquire/opensource/ipfs/js-ipfs
├─┬ [email protected]
│ └─┬ [email protected]
│   └── [email protected]  deduped
└─┬ [email protected]
  └── [email protected]

[daviddias]

💡 So it is evident. Nice, I was worried that it was npm false deduping. Thanks for catching that!

[daviddias]

Woot 🚀 No more unsafe-eval!

[dignifiedquire]

🎉 🎉 🎉

[kyledrake]

Any updates here? Sounds like this is ready to go now that the eval issue is fixed. It would be nice to see this get merged into Brave and released.

[Jacalz]

Yeah, I would love to see this too, have been waiting for a long time now 😅

[daviddias]

Good news everyone! @alanshaw and @olizilla are coming to help us polish the last quirks here! \o/

You can expect more activity starting this week this week. Especially when it comes to the UX for the user, cleaning out any last bugs and following up on outstanding tasks such as the needed streaming API.

@olizilla and @alanshaw welcome to this endeavor! Ping me through this thread or IRC if you have any questions! :)

[alanshaw]

Just a few of notes:

• Webpack needs to be installed globally to build
• wget needs to be installed for npm run ipfs to work
• Document that npm run ipfs needs to be run!
• [email protected] (wanted [email protected]) causes error Cannot find module 'ad-block/lib/regions'. I had to install [email protected] to successfully start (maybe this is fixed upstream?)

[olizilla]

@diasdavid do you have any background info on why registerURIHandlers is needed?

[daviddias]

because an IPFS hash is, in reality, a URI and not a URL, we should be able to do ipfs:QmHash and not ipfs://QmHash.

This is still an ongoing proposal, read more at:

• Background on Address Scheme discussions (dweb, ipfs:// and more) ipfs/specs#152
• https://github.com/ipfs/specs/pull/167/files

[ghost]

we should be able to do ipfs:QmHash and not ipfs://QmHash.

Mh no, ipfs://QmHash is absolutely fine, and the URI variant is dweb:/ipfs/QmHash

[olizilla]

@lgierth i think @diasdavid is saying that in the context of this PR, the current impl can only do ipfs://QmHash style, and if we had the registerURIHandlers api available, we could do dweb:/ipfs/QmHash or ipfs:QmHash uris. (and that dweb is preferred)