Skip to content

config: extract LIBP2P_ALPN_PROTOCOL constant and add spec test #498

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tcoratger merged 1 commit into from
Mar 27, 2026
Merged

config: extract LIBP2P_ALPN_PROTOCOL constant and add spec test #498

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions src/lean_spec/subspecs/networking/config.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -64,3 +64,11 @@

MAX_ERROR_MESSAGE_SIZE: Final[int] = 256
"""Maximum error message size in bytes per Ethereum P2P spec (ErrorMessage: List[byte, 256])."""

LIBP2P_ALPN_PROTOCOL: Final[str] = "libp2p"
"""ALPN protocol identifier for libp2p connections.

Per the libp2p TLS spec (https://github.com/libp2p/specs/blob/master/tls/tls.md):
"libp2p" is the Application-Layer Protocol Negotiation (ALPN) value used
during the TLS 1.3 handshake to identify libp2p connections.
"""
5 changes: 3 additions & 2 deletions src/lean_spec/subspecs/networking/transport/quic/connection.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,7 @@
StreamReset,
)

from lean_spec.subspecs.networking.config import LIBP2P_ALPN_PROTOCOL
from lean_spec.subspecs.networking.types import ProtocolId

from ..identity import IdentityKeypair
Expand Down Expand Up @@ -520,7 +521,7 @@ async def create(

# Configure QUIC.
config = QuicConfiguration(
alpn_protocols=["libp2p"],
alpn_protocols=[LIBP2P_ALPN_PROTOCOL],
is_client=True,
verify_mode=ssl.CERT_NONE, # We verify via libp2p extension, not CA
)
Expand Down Expand Up @@ -640,7 +641,7 @@ async def listen(

# Create server configuration.
server_config = QuicConfiguration(
alpn_protocols=["libp2p"],
alpn_protocols=[LIBP2P_ALPN_PROTOCOL],
is_client=False,
verify_mode=ssl.CERT_NONE, # We verify via libp2p extension
)
Expand Down
22 changes: 22 additions & 0 deletions tests/lean_spec/subspecs/networking/transport/quic/test_connection.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@

import pytest

from lean_spec.subspecs.networking.config import LIBP2P_ALPN_PROTOCOL
from lean_spec.subspecs.networking.transport.peer_id import PeerId
from lean_spec.subspecs.networking.transport.quic.connection import (
ConnectionTerminated,
Expand Down Expand Up @@ -176,6 +177,27 @@ def test_no_quic_tag_returns_none_transport(self) -> None:
assert (host, port, transport) == ("10.0.0.1", 3000, None)


# ---------------------------------------------------------------------------
# ALPN protocol — per the libp2p TLS spec
#
# https://github.com/libp2p/specs/blob/master/tls/tls.md
# "Endpoints MUST NOT send (and MUST NOT accept) any ALPN extension that
# does not include "libp2p" as the ALPN protocol string."
# ---------------------------------------------------------------------------


class TestAlpnProtocol:
"""Verify the ALPN protocol value per the libp2p TLS spec."""

def test_alpn_is_libp2p(self) -> None:
"""The ALPN value is 'libp2p' as mandated by the libp2p TLS spec.

Spec reference (https://github.com/libp2p/specs/blob/master/tls/tls.md):
the ALPN extension MUST include "libp2p" as the protocol string.
"""
assert LIBP2P_ALPN_PROTOCOL == "libp2p"


# ---------------------------------------------------------------------------
# QuicStream — read behavior per RFC 9000 Section 3
#
Expand Down
Loading