Skip to content

feat: validate v2 ipns signatures#121

Merged
vasco-santos merged 4 commits intomasterfrom
feat/validate-v2-sigs
Jun 10, 2021
Merged

feat: validate v2 ipns signatures#121
vasco-santos merged 4 commits intomasterfrom
feat/validate-v2-sigs

Conversation

@achingbrain
Copy link
Copy Markdown
Member

@achingbrain achingbrain commented Jun 6, 2021
edited
Loading

Ports ipfs/go-ipns@3deb032 to js.

The browser tests won't pass until rvagg/cborg#18 is resolved.

In order to support TTLs of longer than a few months we need to pull in long until protobuf.js v8 is released.

@achingbrain
feat: validate v2 ipns signatures
ca546de 
Ports ipfs/go-ipns@3deb032
to js.

The browser tests won't pass until rvagg/cborg#18
is resolved.
@achingbrain achingbrain requested a review from vasco-santos June 6, 2021 09:04
rvagg
rvagg reviewed Jun 7, 2021
View reviewed changes
achingbrain and others added 2 commits June 8, 2021 08:58
@achingbrain @rvagg
chore: pr comments
624a932 
Co-authored-by: Rod Vagg <rod@vagg.org>
@achingbrain
chore: fix up tests
d7a218b
@achingbrain achingbrain mentioned this pull request Jun 8, 2021
Merged
1 task
vasco-santos
vasco-santos reviewed Jun 9, 2021
View reviewed changes
Copy link
Copy Markdown
Member

@vasco-santos vasco-santos left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This overall looks great to me. I have a question around the cborg encoding order that might cause interop problems.

Could you propagate this to js-ipfs + IPFS interop tests to guarantee the interop between implementations continues?

src/index.js
ttl
}

return cborg.encode(data)
Copy link
Copy Markdown
Member

@vasco-santos vasco-santos Jun 9, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does js cborg sorts the entries while encoding the data?

I know that in go they needed to sort manually the entries: ipfs/go-ipns@3deb032#diff-3586bf1db53da12e45eb5e5072b15b3fc5ada0b80883e9945c10cead73f1ca91R76

Copy link
Copy Markdown
Member

@rvagg rvagg Jun 9, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes it does, and the Go ppl have to do it because @warpfork refuses to make it a codec concern or option in ipld-prime (which I will continue to moan at him about).

> const data = { value: new Uint8Array([1,2,3]), validity: new Uint8Array([3,4,5]), validityType: 1, sequence: 10000n, ttl: 1000000000000n }
> Buffer.from(cborg.encode(data)).toString('hex')
'a56374746c1b000000e8d4a510006576616c7565430102036873657175656e63651927106876616c6964697479430304056c76616c69646974795479706501'

$ cborg hex2diag a56374746c1b000000e8d4a510006576616c7565430102036873657175656e63651927106876616c6964697479430304056c76616c69646974795479706501
a5                                                # map(5)
  63                                              #   string(3)
    74746c                                        #     "ttl"
  1b 000000e8d4a51000                             #   uint(1000000000000)
  65                                              #   string(5)
    76616c7565                                    #     "value"
  43                                              #   bytes(3)
    010203                                        #     "\x01\x02\x03"
  68                                              #   string(8)
    73657175656e6365                              #     "sequence"
  19 2710                                         #   uint(10000)
  68                                              #   string(8)
    76616c6964697479                              #     "validity"
  43                                              #   bytes(3)
    030405                                        #     "\x03\x04\x05"
  6c                                              #   string(12)
    76616c696469747954797065                      #     "validityType"
  01                                              #   uint(1)

it's the RFC7049 sorting rules - length then bytewise.

it'd be great to have some fixture data to compare between implementations though to ensure this is consistent.

@achingbrain
Copy link
Copy Markdown
Member Author

achingbrain commented Jun 10, 2021
edited
Loading

Could you propagate this to js-ipfs + IPFS interop tests to guarantee the interop between implementations continues?

The PR that pulls it all together is here: ipfs/js-ipfs#3708 - everything looks ok

vasco-santos
vasco-santos approved these changes Jun 10, 2021
View reviewed changes
Copy link
Copy Markdown
Member

@vasco-santos vasco-santos left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@vasco-santos vasco-santos merged commit d1421f9 into master Jun 10, 2021
@vasco-santos vasco-santos deleted the feat/validate-v2-sigs branch June 10, 2021 12:42
This was referenced Aug 31, 2022
Closed
Closed
@lidel lidel mentioned this pull request Feb 5, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rvagg rvagg rvagg left review comments

@vasco-santos vasco-santos vasco-santos approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@achingbrain @rvagg @vasco-santos