Website: WebRTC documentation for developers

dannywillems · dannywillems · commit d7b9fbc34597 · 2025-08-13T19:09:13.000+02:00
Add comprehensive WebRTC documentation to help engineers understand WebRTC
fundamentals and OpenMina's implementation. The documentation covers NAT
traversal, signaling protocols, ICE candidates, and OpenMina's specific
WebRTC architecture including host resolution, signaling methods, and
cryptographic authentication.

Highlights Web Node importance for browser-based Mina protocol nodes and
includes documentation link in the WebRTC module for easy reference.
diff --git a/p2p/src/webrtc/mod.rs b/p2p/src/webrtc/mod.rs
@@ -1,3 +1,14 @@
+//! # WebRTC Implementation
+//!
+//! This module provides WebRTC peer-to-peer communication capabilities for
+//! OpenMina.
+//! WebRTC enables direct peer connections, NAT traversal, and efficient
+//! blockchain node communication, particularly important for the Web Node
+//! (browser-based Mina protocol).
+//!
+//! For comprehensive documentation about WebRTC concepts and this implementation,
+//! see: <https://o1-labs.github.io/openmina/developers/webrtc>
+
 mod host;
 pub use host::Host;
 
diff --git a/website/docs/developers/webrtc.md b/website/docs/developers/webrtc.md
@@ -0,0 +1,192 @@
+---
+sidebar_position: 3
+title: WebRTC Implementation
+description: Technical introduction to WebRTC for OpenMina engineers
+slug: /developers/webrtc
+---
+
+# WebRTC Introduction for OpenMina Engineers
+
+This document provides a technical introduction to WebRTC for engineers working
+on OpenMina's networking layer.
+
+## What is WebRTC?
+
+WebRTC (Web Real-Time Communication) is a protocol that enables direct
+peer-to-peer communication between network endpoints, bypassing the need for
+centralized servers in data exchange. It's particularly valuable for blockchain
+nodes that need efficient, low-latency communication, and critically enables
+communication between nodes running in web browsers - a key aspect of OpenMina's
+architecture.
+
+For detailed technical specifications, see the
+[W3C WebRTC 1.0 specification](https://www.w3.org/TR/webrtc/).
+
+## Core Technical Concepts
+
+### Network Address Translation (NAT) Challenge
+
+Most devices operate behind NAT routers that map private IP addresses to public
+ones. This creates a fundamental problem: peers cannot directly connect because
+they don't know each other's public addresses or how to traverse the NAT.
+
+### Connection Traversal Protocols
+
+WebRTC uses two key protocols to solve NAT traversal:
+
+- **STUN (Session Traversal Utilities for NAT)**: Discovers the public IP
+  address and port mapping of a peer behind NAT
+- **TURN (Traversal Using Relay NAT)**: Provides a relay server fallback when
+  direct connection fails
+- **ICE (Interactive Connectivity Establishment)**: Orchestrates STUN and TURN
+  to find the optimal connection path
+
+### Signaling Process
+
+WebRTC requires an external signaling mechanism to exchange connection metadata.
+The protocol itself does not specify how signaling works - implementations must
+provide their own method. Common approaches include:
+
+- WebSocket connections
+- HTTP polling
+- Direct message exchange
+
+### Session Description Protocol (SDP)
+
+Peers exchange SDP data containing:
+
+- Media capabilities
+- Network information
+- Encryption keys
+- ICE candidates (potential connection paths)
+
+### ICE Candidates
+
+These represent different potential connection pathways:
+
+- Host candidates (local network addresses)
+- Server reflexive candidates (public IP via STUN)
+- Relay candidates (TURN server addresses)
+
+ICE dynamically selects the best path based on connectivity and performance.
+
+## OpenMina's WebRTC Implementation
+
+OpenMina's WebRTC implementation is located in
+[`p2p/src/webrtc/`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/index.html)
+and provides a structured approach to peer-to-peer connections for blockchain
+communication.
+
+### Key Components
+
+#### Host Resolution ([`host.rs`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/host/index.html))
+
+Handles different address types:
+
+- Domain names (with DNS resolution)
+- IPv4/IPv6 addresses
+- Multiaddr protocol integration
+
+#### Signaling Messages ([`signal.rs`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/index.html))
+
+Defines the core signaling data structures:
+
+- **Offer**: Contains SDP data, chain ID, identity keys, and target peer
+  information
+- **Answer**: Response containing SDP and identity information
+- **Connection Response**: Handles acceptance, rejection, and error states
+
+#### Signaling Methods ([`signaling_method/`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signaling_method/index.html))
+
+Supports multiple signaling transport methods:
+
+- HTTP/HTTPS direct connections
+- HTTPS proxy with cluster support
+- P2P relay through existing peers
+
+#### Connection Authentication ([`connection_auth.rs`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/connection_auth/index.html))
+
+Provides cryptographic authentication:
+
+- Generates authentication data from SDP hashes
+- Uses public key encryption for secure handshakes
+- Prevents man-in-the-middle attacks
+
+### Security Features
+
+OpenMina's WebRTC implementation includes several security measures:
+
+1. **Chain ID Verification**: Ensures peers are on the same blockchain
+2. **Identity Authentication**: Uses public key cryptography to verify peer
+   identity
+3. **Connection Encryption**: Encrypts signaling data and connection
+   authentication
+4. **Rejection Handling**: Comprehensive error handling with specific rejection
+   reasons
+
+### Connection Flow
+
+1. **Offer Creation**: Initiating peer creates an
+   [offer](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Offer.html)
+   with SDP, identity, and target information using
+   [`Offer::new()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Offer.html#method.new)
+2. **Signaling**: Offer is transmitted through the configured
+   [signaling method](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signaling_method/enum.SignalingMethod.html)
+   using
+   [`SignalingMethod::http_url()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signaling_method/enum.SignalingMethod.html#method.http_url)
+   for HTTP-based methods
+3. **Offer Processing**: Receiving peer validates chain ID, identity, and
+   capacity using
+   [`Offer::chain_id()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Offer.html#method.chain_id)
+   and
+   [`Offer::identity()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Offer.html#method.identity)
+4. **Answer Generation**: If accepted, receiving peer creates an
+   [answer](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Answer.html)
+   with SDP using
+   [`Answer::new()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/struct.Answer.html#method.new)
+5. **Connection Response**: Response is wrapped in
+   [`P2pConnectionResponse`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/signal/enum.P2pConnectionResponse.html)
+   indicating acceptance or rejection
+6. **Authentication**: Final handshake using encrypted
+   [connection authentication](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/connection_auth/struct.ConnectionAuth.html)
+   created via
+   [`ConnectionAuth::new()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/connection_auth/struct.ConnectionAuth.html#method.new)
+   and encrypted with
+   [`ConnectionAuth::encrypt()`](https://o1-labs.github.io/openmina/api-docs/p2p/webrtc/connection_auth/struct.ConnectionAuth.html#method.encrypt)
+
+### Integration with OpenMina Architecture
+
+The WebRTC implementation follows OpenMina's Redux-style architecture:
+
+- State management through actions and reducers
+- Event-driven connection lifecycle
+- Service separation for async operations
+- Comprehensive error handling and logging
+
+## Web Node Integration
+
+WebRTC is particularly crucial for OpenMina's **Web Node** - the browser-based
+version of the Mina protocol. Web browsers have networking restrictions that
+make traditional peer-to-peer protocols challenging:
+
+- **Browser Security Model**: Web browsers restrict direct TCP/UDP connections
+- **NAT Traversal**: WebRTC's built-in NAT traversal works seamlessly in browser
+  environments
+- **Real-time Communication**: Enables efficient blockchain synchronization and
+  consensus participation from web browsers
+- **Decentralized Access**: Allows users to run full Mina nodes directly in
+  their browsers without centralized infrastructure
+
+The Web Node represents a significant advancement in blockchain accessibility,
+enabling truly decentralized participation without requiring users to install
+native applications or manage complex network configurations.
+
+## Future Considerations
+
+While the current OpenMina OCaml implementation doesn't use WebRTC, the Rust
+implementation provides a foundation for enhancing peer discovery and reducing
+infrastructure dependencies.
+
+The WebRTC implementation represents a key component in OpenMina's evolution
+toward a fully decentralized, efficient blockchain networking layer that works
+seamlessly across desktop, server, and browser environments.
diff --git a/website/sidebars.ts b/website/sidebars.ts
@@ -71,8 +71,9 @@ const sidebars: SidebarsConfig = {
       type: 'category',
       label: 'Architecture',
       items: [
-        'developers/architecture',
         'developers/why-openmina',
+        'developers/architecture',
+        'developers/webrtc',
       ],
     },
   ],
