[keyserver] Validate `SIWEMessage` `signature` in `siweAuthResponder`
ClosedPublic
Actions

Authored by atul on Dec 25 2022, 9:23 AM.

Details

Reviewers

ashoat
tomek

Commits

rCOMM97bc6dbe3a8c: [keyserver] Validate `SIWEMessage` `signature` in `siweAuthResponder`

Summary

Attempt to validate the signature for the SIWEMessage and handle potential errors (unrelated but noticed` siwe` 2.x has much more descriptive error types: https://blob.sh/00a56f.png).

Depends on D6032

Test Plan

Haven't tested just yet but will hardcode some values to try to hit the error cases and make sure things are handled properly.

Diff Detail

Repository

rCOMM Comm

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

atul created this revision.Dec 25 2022, 9:23 AM

atul published this revision for review.Dec 25 2022, 9:24 AM

atul added inline comments.

lib/types/siwe-types.js
110 ↗	(On Diff #20110)	Based off of the following TypeScript: Will type the parts of `siwe` we use properly via `flow-typed` later in the stack.

atul attached a referenced file: F304294: de79d6.png. (Show Details)Dec 25 2022, 9:25 AM

atul edited the summary of this revision. (Show Details)Dec 25 2022, 9:27 AM

atul added a parent revision: D6032: [keyserver] Introduce `checkAndInvalidateSIWENonceEntry` and consume in `siweAuthResponder`.

Harbormaster completed remote builds in B14746: Diff 20110.Dec 25 2022, 9:37 AM

ashoat accepted this revision.Dec 26 2022, 3:27 AM

ashoat added inline comments.

keyserver/src/responders/user-responders.js
345 ↗	(On Diff #20110)	We usually do something more like `expired_message` for `ServerError`. It's meant to basically be an error code

This revision is now accepted and ready to land.Dec 26 2022, 3:27 AM

atul added inline comments.Dec 26 2022, 3:29 AM

keyserver/src/responders/user-responders.js
345 ↗	(On Diff #20110)	Gotcha, was using the values of the `ErrorTypes` enum as the error messages but will use the "keys" instead (eg `expired_message`, `malformed_session`, etc)

rebase before addressing feedback

rebase after addressing feedback and before landing

This revision was landed with ongoing or failed builds.Dec 27 2022, 9:08 AM

Closed by commit rCOMM97bc6dbe3a8c: [keyserver] Validate `SIWEMessage` `signature` in `siweAuthResponder`. · Explain Why

This revision was automatically updated to reflect the committed changes.

atul added a commit: rCOMM97bc6dbe3a8c: [keyserver] Validate `SIWEMessage` `signature` in `siweAuthResponder`.

Harbormaster completed remote builds in B14767: Diff 20144.Dec 27 2022, 9:16 AM

Harbormaster completed remote builds in B14768: Diff 20145.Dec 27 2022, 9:19 AM

ashoat added inline comments.Dec 27 2022, 8:20 PM

keyserver/src/responders/user-responders.js
336	These `{ status: 400 }` objects don't do anything, do they?

atul added inline comments.Dec 28 2022, 7:27 AM

keyserver/src/responders/user-responders.js
336	Not that I know of, I saw that Derek used that pattern so I just went with it... Can remove if they're superfluous which it seems like they are. Based on the comment: it looks like `payload` field was initially included for `updateEntry` and `deleteEntry`. And looks like we also use it EG for policy acknowledgement stuff. Doesn't seem like `payload` is the right place to put the HTTP code nor is it used anywhere. I'll put up a diff removing them.