Peer-to-peer WebRTC mesh networking with "offensive" cryptographic.
p2party connects peers visiting the same URL into a WebRTC mesh network and enables secure message exchange of any size over ephemeral data channels. Unlike traditional privacy-enabling libraries, p2party obfuscates traffic using noisy and randomized padding of real information, isomorphic packet transmission (64kb), making message intent opaque. Of course it also adds a layer of ChaChaPoly1305 end-to-end encryption with ephemeral Ed25519 sender keys.
The API is not completely stable and the code has not undergone external security audits. Use at your own risk.
- 📡 Auto-connect peers based on shared URLs
- 🔀 WebRTC mesh topology (no central servers except for signaling and STUN/TURN)
- 🔐 "Offensive" cryptography: every message can be split in multiple 64KB chunks so a stalker stores a lot of useless info
- 🧩 Supports
Fileandstringmessages via chunked encoding - 🧠 Built-in address book (whitelist), blacklist, and room memory, all stored in the browser's IndexedDB
- 🛠 Easy API and integration with React via custom hooks
This library relies heavily on libsodium for cryptographic operations, which is a battle-tested project, compiled to WebAssembly for speed.
The library offers mnemonic generation, validation and Ed25519 key pair from mnemonic functionality that was inspired by bip39 but instead of Blake2b we use Argon2, provided by libsodium, and instead of SHA256 we use SHA512 (native browser functionality).
A project that was previously developed and gave a lot of inspiration for this library was libcrypto.
On the js side, the library depends on Redux for state management.
To start, you install by typing in your project
npm install p2partyand include as ES module
import p2party from "p2party";or as CommonJS module
const p2party = require("p2party");or as UMD in the browser
<script src="https://cdn.jsdelivr.net/npm/p2party@latest/lib/index.min.js"></script>The official website p2party.com, which is an SPA written in React, consumes the library with a hook in the following way:
import p2party from "p2party";
import { useState } from "react";
import { useSelector } from "react-redux";
import type { Message } from "p2party";
export interface MessageWithData extends Message {
data: string | File;
}
export const useRoom = () => {
const [roomIndex, setRoomIndex] = useState(-1);
const keyPair = useSelector(p2party.keyPairSelector);
const rooms = useSelector(p2party.roomSelector);
const signalingServerConnection = useSelector(
p2party.signalingServerSelector,
);
const openChannel = async (name: string) => {
if (roomIndex === -1) throw new Error("No room was selected");
await p2party.openChannel(
rooms[roomIndex].id,
name,
rooms[roomIndex].peers,
);
};
const sendMessage = async (message: string | File, channel: string) => {
if (roomIndex === -1) throw new Error("No room was selected");
await p2party.sendMessage(
message,
channel,
rooms[roomIndex].id,
percentageFilledChunk / 100,
chunks,
);
};
return {
keyPair,
peerId: keyPair.peerId,
signalingServerURL: signalingServerConnection.serverUrl,
signalingServerConnectionState: signalingServerConnection,
peers: roomIndex > -1 ? rooms[roomIndex].peers : [],
channels: roomIndex > -1 ? rooms[roomIndex].channels : [],
messages: roomIndex > -1 ? rooms[roomIndex].messages : [],
connect: p2party.connect,
connectToSignalingServer: p2party.connectToSignalingServer,
disconnect: p2party.disconnectFromRoom,
disconnectFromSignalingServer: p2party.disconnectFromSignalingServer,
disconnectFromRoom: p2party.disconnectFromRoom,
disconnectFromAllRooms: p2party.disconnectFromAllRooms,
disconnectFromPeer: p2party.disconnectFromPeer,
openChannel,
selectChannel: setSelectedChannel,
sendMessage,
readMessage: p2party.readMessage,
cancelMessage: p2party.cancelMessage,
deleteMessage: p2party.deleteMessage,
purge: p2party.purge,
purgeRoom: p2party.purgeRoom,
purgeIdentity: p2party.purgeIdentity,
};
};In the p2party.com SPA, where we use React-Router for navigation, we use the following function to navigate to a new room that is randomly generated. We implement it inside the hook and export it with it.
/**
* Previous imports
*/
import { useNavigate } from "react-router";
export const useRoom = () => {
const navigate = useNavigate();
/**
* Previous functions
*/
const goToRandomRoom = async (replace = false) => {
const random = await p2party.generateRandomRoomUrl();
navigate("/rooms/" + random, { replace });
};
return {
goToRandomRoom,
};
};The most important exported functions by p2party, with their types, are:
/**
* Connects peer to a room.
* A room URL is 64 chars long. We use the sha256 of the sha512 of random data.
*/
const connect = async (
roomUrl: string,
signalingServerUrl = "wss://signaling.p2party.com/ws",
rtcConfig: RTCConfiguration = {
iceServers: [
{
urls: ["stun:stun.p2party.com:3478"],
},
],
iceTransportPolicy: "all",
},
) => Promise<void>;
const connectToSignalingServer = async (
roomUrl: string,
signalingServerUrl = "wss://signaling.p2party.com/ws",
) => Promise<void>;
const sendMessage = async (
data: string | File,
toChannel: string,
roomId: string,
percentageFilledChunk = 0.9,
minChunks = 3,
chunkSize = CHUNK_LEN,
metadataSchemaVersion = 1,
) => Promise<void>;
const readMessage = async (merkleRootHex?: string, hashHex?: string) =>
Promise<{
message: string | Blob;
percentage: number;
size: number;
filename: string;
mimeType: MimeType;
extension: FileExtension;
category: string;
}>;
const cancelMessage = async (
channelLabel: string,
merkleRoot?: string | Uint8Array,
hash?: string | Uint8Array,
) => Promise<void>;For a complete reference of the API you can check the library output file index.ts.
To load all the past room data you call
const rooms = await p2party.getAllExistingRooms();To load the contents of a private message you can use the following React item with the react hook:
// Suppose Text React element exists
import { Text } from "./Text";
// {{ message }} comes from const { messages } = useRoom();
const MessageItem: FC<MessageItemProps> = ({ message }) => {
const [state, setState] = useState<{
msg: string;
msgSize: number;
msgFilename: string;
msgCategory: string;
msgPercentage: number;
msgLoadingText: string;
msgExtension: FileExtension;
}>({
msg: "",
msgSize: 0,
msgFilename: "",
msgCategory: p2party.MessageCategory.Text,
msgLoadingText: "",
msgPercentage: 0,
msgExtension: "",
});
useEffect(() => {
const controller = new AbortController();
const setMessage = async () => {
const m = await readMessage(message.merkleRootHex, message.sha512Hex);
/**
* In this situation the user is the sender and before they
* send the message they need to split it into chunks
* in order to calculate the Merkle root and proof before send.
*/
if (
message.fromPeerId === peerId &&
message.totalChunks > 0 &&
message.chunksCreated < message.totalChunks
) {
setState((prevState) => ({
...prevState,
msg:
typeof m.message === "string"
? m.message
: m.message
? URL.createObjectURL(m.message)
: "",
msgLoadingText:
"Split " +
message.chunksCreated +
" chunks of " +
message.totalChunks,
msgFilename: m.filename,
msgCategory: m.category,
msgExtension: m.extension,
msgPercentage: Math.floor(
(message.chunksCreated / message.totalChunks) * 100,
),
}));
} else {
/**
* Here the user is the receiver and they can read the message since they have
* all the necessary chunks
*/
if (m.percentage === 100) {
setState((prevState) => ({
...prevState,
msg:
typeof m.message === "string"
? m.message
: m.message
? URL.createObjectURL(m.message)
: "",
msgSize: m.size,
msgLoadingText: "",
msgFilename: m.filename,
msgCategory: m.category,
msgExtension: m.extension,
msgPercentage: m.percentage, // 100,
}));
} else {
/**
* Here the receiver does not have all the chunks necessary to read the message
**/
setState((prevState) => ({
...prevState,
msgSize: m.size,
msgLoadingText:
"Received " +
formatBytes(message.savedSize) +
" of " +
formatBytes(message.totalSize),
msgFilename: m.filename,
msgCategory: m.category,
msgExtension: m.extension,
msgPercentage: m.percentage,
}));
}
}
};
setMessage();
return () => {
controller.abort();
if (msg.length > 0 && msgCategory !== p2party.MessageCategory.Text)
URL.revokeObjectURL(msg);
};
}, [
message.merkleRootHex,
message.sha512Hex,
message.savedSize,
message.chunksCreated,
]);
const {
msg,
msgSize,
msgCategory,
msgPercentage,
msgExtension,
msgLoadingText,
msgFilename,
} = state;
return (
<div>
{msgCategory === p2party.MessageCategory.Text && url.length === 0 && (
<Text>{msg as string}</Text>
)}
{msgCategory === p2party.MessageCategory.Text && url.length > 0 && (
<Text>{msg as string}</Text>
)}
{msgCategory !== p2party.MessageCategory.Text && (
<Text>{msgFilename}</Text>
)}
</div>
);
};For privacy features like whitelist, blacklist and room purging we have the following APIs:
/**
* This deletes the user's private key but keeps all the messages.
* A side effect is that the user is disconnected from all their rooms.
*/
const purgeIdentity = () => void;
/**
* This deletes all the data of a room and disconnects the user from it.
*/
const purgeRoom = (roomUrl: string) => void;
/**
* This deletes both private keys and messages and gives a clean state.
*/
const purge = async () => void;
/**
* This deletes a specific message (merkle root) or all instances of
* a specific message (hash).
*/
const deleteMessage = async (
merkleRoot?: string | Uint8Array,
hash?: string | Uint8Array,
) => void;
/**
* This does not do anything by itself unless the next function is called.
*/
const addPeerToAddressBook = async (
username: string,
peerId: string,
peerPublicKey: string,
) => void;
/**
* Once this function is called with onlyAllow: true,
* the user can only connect to peers in their whitelist in a specific room.
* Everyone else cannot even see if the user is connected in the same URL.
* Can be reverted by calling the function with onlyAllow: false.
* Default state for new rooms is onlyAllow: false.
*/
const onlyAllowConnectionsFromAddressBook = async (
roomUrl: string,
onlyAllow: boolean,
) => void;
const deletePeerFromAddressBook = async (
username?: string,
peerId?: string,
peerPublicKey?: string,
) => void;
/**
* Once the user is here they cannot connect with us
* and they cannot even see if we are connected in the room at the same time as them.
* They can theoretically receive the same messages as us from our common peers who have
* not blacklisted them.
*/
const blacklistPeer = async (peerId: string, peerPublicKey: string) => void;
const removePeerFromBlacklist = async (peerId?: string, peerPublicKey?: string) => void;Because a message is split into chunks with noisy padding for which we need to calculate Merkle proofs, it may take some time for the process to finish before starting transmitting the information over a channel.
If you want to build the library yourselves, you need to have Emscripten
installed on your machine in order to compile the C code into WebAssembly.
We have the -s SINGLE_FILE=1 option for the emcc compiler, which converts the wasm file to a base64 string
that will be compiled by the glue js code into a WebAssembly module. This was done for the purpose of interoperability
and modularity.
Clone the repo, download the libsodium submodule and install packages:
git clone https://github.com/p2party/p2party-js.git
cd p2party-js
git submodule init
git submodule update
npm i
Once you have all the dependencies installed, you can run
npm run dist
and Rollup will generate the UMD, ESM and CJS bundles.
The source code is licensed under the terms of the Affero General Public License version 3.0 (see LICENSE).
Copyright (C) 2025 Deliberative Technologies P.C.