Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keyring JSON with kdf #637

Merged
merged 12 commits into from
Jul 21, 2020
Merged

Keyring JSON with kdf #637

merged 12 commits into from
Jul 21, 2020

Conversation

jacogr
Copy link
Member

@jacogr jacogr commented Jul 20, 2020
edited
Loading

  • pbdkf2 for JS/WASM as available
  • verification that the flow is sane
  • update tests for new
  • include tests for old
  • include tests for conversion
  • end-to-end testing against real
  • end-to-end verification on upgrade
  • version bump to v3

Still TODO in follow-up PRs in the 3 series -

@jacogr jacogr added the WIP Work in Progress label Jul 20, 2020
kirushik
kirushik approved these changes Jul 20, 2020
View reviewed changes
Copy link

@kirushik kirushik left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me, other than a couple of some minor nits.

packages/util-crypto/src/scrypt/fromU8a.ts

export default function scryptFromU8a (data: Uint8Array): Result {
const salt = data.subarray(0, 32);
const N = u8aToBn(data.subarray(32 + 0, 32 + 4), { isLe: true }).toNumber();
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wonder if it would make sense to add some sanity checks here to avoid DoSing by some ridiculously-high numbers.
Probably is not an issue in client-side usage, though, since you can always close the tab.
But if we ever use this code serverside, maybe it would make sense to either explicitly timeout the derivation function or put some reasonable limits (like all defaults + 2 maybe?) on the values here?

Copy link
Member Author

@jacogr jacogr Jul 20, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, this is not great an opens up a hole. For now, I'm going to fix it to the defaults until there is a proper plan of attack - need to really look around on best-practices for this. User inputs are always an issue...

// FIXME At this moment we assume these to be fixed params, this is not a great idea since we lose flexibility
  // and updates for greater security. However we need some protection against carefully-crafted params that can
  // eat up CPU since these are user inputs. So we need to get very clever here, but atm we only allow the defaults
  // and if no match, bail out
  assert(N === DEFAULT_PARAMS.N && p === DEFAULT_PARAMS.p && r === DEFAULT_PARAMS.r, 'Invalid injected scrypt params found');

Easting the elephant in chunks here since this one has a bit of rollout gymnastics and would rather get it in solid, sooner and slightly less flexible than delayed and flexible in all ways possible.

EDIT: Logged here #638

packages/util-crypto/src/index.ts
@@ -17,8 +17,10 @@ export * from './keccak';
export * from './key';
export * from './mnemonic';
export * from './nacl';
export * from './pbkdf2';
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do you still want to keep it, even despite PBKDF2 is not being used anymore?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, since it is actually used elsewhere it should have been exposed already and it wasn't.

@jacogr jacogr changed the title Keyring JSON with pbkdf2 Keyring JSON with kdf Jul 20, 2020
@jacogr jacogr mentioned this pull request Jul 20, 2020
Closed
@jacogr jacogr mentioned this pull request Jul 20, 2020
Closed
@jacogr jacogr removed the WIP Work in Progress label Jul 20, 2020
@jacogr jacogr mentioned this pull request Jul 21, 2020
Closed
@jacogr jacogr merged commit 0a6bd41 into master Jul 21, 2020
@jacogr jacogr deleted the jg-pbkdf2 branch July 21, 2020 06:17
@jacogr jacogr mentioned this pull request Jul 21, 2020
Closed
@polkadot-js-bot
Copy link

This pull request has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

@polkadot-js polkadot-js locked as resolved and limited conversation to collaborators Jun 3, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@kirushik kirushik kirushik approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jacogr @polkadot-js-bot @kirushik