webauthn + refactor #23
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
added 19 commits
April 19, 2022 18:18
added 2 commits
May 10, 2022 14:38
added 4 commits
May 10, 2022 14:44
hansl
reviewed
May 11, 2022
| } | ||
|
|
||
| getCoseKey(): CoseKey { | ||
| const c = new Map() |
There was a problem hiding this comment.
this.getCommon was removed from CoseKey, moved into getCoseKey for each Identity.
code snip below is from current main branch and for ANONYMOUS, we still create the common structure
// this.getProtectedHeader (ANONYMOUS) -> new CoseKey(ANONYMOUS) -> getCommon(ANONYMOUS)
const protectedHeader = this.getProtectedHeader(
keys ? keys.publicKey : ANONYMOUS
);
private static getProtectedHeader(publicKey: Key): CborMap {
const coseKey = new CoseKey(publicKey);
const protectedHeader = new Map();
protectedHeader.set(1, -8); // alg: "Ed25519"
protectedHeader.set(4, coseKey.keyId); // kid: kid
protectedHeader.set("keyset", coseKey.toCborData());
return protectedHeader;
}
export class CoseKey {
key: CborMap;
keyId: CborData;
private common: CborMap;
constructor(publicKey: Key) {
// publicKey would be ANONYMOUS here
this.common = this.getCommon(publicKey);
this.keyId = this.getKeyId();
this.key = this.getKey();
}
private getCommon(publicKey: Key) {
const common = new Map();
common.set(1, 1); // kty: OKP
common.set(3, -8); // alg: EdDSA
common.set(-1, 6); // crv: Ed25519
common.set(4, [2]); // key_ops: [verify]
common.set(-2, publicKey); // x: publicKey
return common;
}
public key has been removed from anon identity. |
added 7 commits
May 18, 2022 13:09
…g is a map. adds types for Attributes and AsyncAttribute
|
@hansl , now ready for review |
hansl
reviewed
May 23, 2022
| return Address.anonymous() | ||
| } | ||
|
|
||
| toJson() { |
There was a problem hiding this comment.
Suggested change
| toJson() { | |
| toJSON() { |
hansl
reviewed
May 23, 2022
src/identity/types.ts
Outdated
|
|
||
| export abstract class Identity implements Signer, Verifier { | ||
| abstract getAddress(): Promise<Address> | ||
| abstract toJson(): unknown |
There was a problem hiding this comment.
Suggested change
| abstract toJson(): unknown | |
| abstract toJSON(): unknown |
hansl
reviewed
May 23, 2022
| publicKey: ArrayBuffer | ||
| protected privateKey: ArrayBuffer | ||
|
|
||
| constructor(publicKey: ArrayBuffer, privateKey: ArrayBuffer) { |
There was a problem hiding this comment.
This could be protected or private
hansl
reviewed
May 23, 2022
| return new WebAuthnIdentity(cosePublicKey, publicKeyCredential.rawId) | ||
| } | ||
|
|
||
| async sign(): Promise<ArrayBuffer> { |
There was a problem hiding this comment.
Suggested change
| async sign(): Promise<ArrayBuffer> { | |
| async sign(): Promise<ArrayBuffer> { | |
| // This value ends up in the signature COSE field, but we don't | |
| // use it for WebAuthn verification, so we simply set it to | |
| // EMPTY. |
hansl
reviewed
May 23, 2022
| } | ||
|
|
||
| async verify(_: ArrayBuffer): Promise<boolean> { | ||
| return false |
hansl
reviewed
May 23, 2022
|
|
||
| pubKeyCredParams: [ | ||
| { | ||
| // ES256 -7 ECDSA w/ SHA-256 |
There was a problem hiding this comment.
Please add a comment explaining why we only use ES256.
hansl
requested changes
May 23, 2022
| @@ -0,0 +1,16 @@ | |||
| import { Message } from ".." | |||
|
|
|||
| export class Attributes { | |||
There was a problem hiding this comment.
Can you add a TODO and an issue on this repo for your thoughts on how this can be made better?
| const sha512 = require("js-sha512") | ||
|
|
||
| const CHALLENGE_BUFFER = new TextEncoder().encode("lifted") | ||
| const ONE_MINUTE = 60000 |
There was a problem hiding this comment.
Move this into a const.ts file or something similar.
src/network/modules/async/async.ts
Outdated
Comment on lines
29
to
54
| async function fetchAsyncStatus( | ||
| n: Network, | ||
| asyncToken: ArrayBuffer, | ||
| ): Promise<Message> { | ||
| const start = new Date().getTime() | ||
| let waitTime = ONE_SECOND | ||
| let isDurationReached = false | ||
| let res = new Message(new Map()) | ||
|
|
||
| while (!isDurationReached) { | ||
| res = (await n.call("async.status", new Map([[0, asyncToken]]))) as Message | ||
| const payload = res.getPayload() | ||
| if (payload) { | ||
| if (payload.has(0)) { | ||
| const asyncResult = payload.get(0) | ||
| if (asyncResult === 3 && payload.has(1)) { | ||
| const msg = cbor.decode(payload.get(1)).value | ||
| return new Message(msg) | ||
| } | ||
| } | ||
| } | ||
| const now = new Date().getTime() | ||
| isDurationReached = now - start >= ONE_MINUTE | ||
| await sleep(waitTime) | ||
| waitTime *= 1.5 | ||
| } |
There was a problem hiding this comment.
Suggested change
| async function fetchAsyncStatus( | |
| n: Network, | |
| asyncToken: ArrayBuffer, | |
| ): Promise<Message> { | |
| const start = new Date().getTime() | |
| let waitTime = ONE_SECOND | |
| let isDurationReached = false | |
| let res = new Message(new Map()) | |
| while (!isDurationReached) { | |
| res = (await n.call("async.status", new Map([[0, asyncToken]]))) as Message | |
| const payload = res.getPayload() | |
| if (payload) { | |
| if (payload.has(0)) { | |
| const asyncResult = payload.get(0) | |
| if (asyncResult === 3 && payload.has(1)) { | |
| const msg = cbor.decode(payload.get(1)).value | |
| return new Message(msg) | |
| } | |
| } | |
| } | |
| const now = new Date().getTime() | |
| isDurationReached = now - start >= ONE_MINUTE | |
| await sleep(waitTime) | |
| waitTime *= 1.5 | |
| } | |
| enum AsyncStatusResult { | |
| Unknown = 0, | |
| Queued = 1, | |
| Processing = 2, | |
| Done = 3, | |
| Expired = 4, | |
| } | |
| type AsyncStatusPayload = { result: AsyncStatusResult.Unknown } | |
| | { result: AsyncStatusResult.Queued } | |
| | { result: AsyncStatusResult.Processing } | |
| | { result: AsyncStatusResult.Expired } | |
| | { | |
| result: AsyncStatusResult.Done, | |
| payload: ArrayBuffer, | |
| } | |
| function parseAsyncStatusPayload(cbor: Map<number, unknown>): AsyncStatusPayload { | |
| const index = cbor.get(0); | |
| if (typeof index != "number") { | |
| throw new Error("Invalid async result") | |
| } | |
| if (!(index in AsyncStatusResult)) { | |
| throw Error("Invalid async result") | |
| } | |
| const result = index as AsyncStatusResult | |
| let payload = undefined; | |
| if (result === AsyncStatusResult.Done) { | |
| payload = cbor.get(1) as ArrayBuffer; | |
| if (!payload || !Buffer.isBuffer(payload)) { | |
| throw Error("Invalid async result") | |
| } | |
| } | |
| return { result, payload } as AsyncStatusPayload | |
| } | |
| async function pollAsyncStatus( | |
| n: Network, | |
| asyncToken: ArrayBuffer, | |
| options: { | |
| timeoutInMsec: number, | |
| waitTimeInMsec: number, | |
| } = {} | |
| ): Promise<Message> { | |
| const timeoutInMsec = options.timeoutInMsec ?? ONE_MINUTE; | |
| const waitTimeInMsec = options.waitTimeInMsec ?? ONE_SECOND; | |
| const end = new Date() + timeoutInMsec | |
| while (true) { | |
| const res = (await n.call("async.status", new Map([[0, asyncToken]]))) as Message | |
| const result = parseAsyncStatusPayload(res.getPayload()) | |
| switch (result.result) { | |
| case AsyncStatusResult.Done: | |
| return new Message(cbor.decode(result.payload).value) | |
| case AsyncStatusResult.Expired: | |
| throw new Error("Async Expired before getting a result") | |
| } | |
| if (Date.now() >= end) { | |
| return res; | |
| } | |
| await sleep(waitTime) | |
| waitTime *= 1.5 | |
| } |
added 2 commits
May 23, 2022 21:39
|
BTW you should request a follow up review using the little icon on the right: |
hansl
approved these changes
May 25, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
maxWorkers: 1per jest-worker fails with "Do not know how to serialize a BigInt" inmessageParent.tsinstead of showing the actual assertion error message when there are 2 or more test suite files executing in parallel jestjs/jest#11617