Page MenuHomePhabricator
Differential D6995

[web-db] implement crypto functions
ClosedPublic
Actions

Authored by kamil on Mar 7 2023, 9:35 AM.
Tags
None
Referenced Files
Unknown Object (File)
Fri, Nov 15, 1:32 AM
Unknown Object (File)
Mon, Nov 11, 7:25 PM
Unknown Object (File)
Sat, Nov 2, 2:54 AM
Unknown Object (File)
Sat, Nov 2, 12:29 AM
Unknown Object (File)
Sat, Nov 2, 12:29 AM
Unknown Object (File)
Sat, Nov 2, 12:29 AM
Unknown Object (File)
Sat, Nov 2, 12:29 AM
Unknown Object (File)
Sat, Nov 2, 12:29 AM
View All Files
Subscribers
ashoat
atul

Details

Reviewers
michal
tomek
bartek
Commits
rCOMM7096eb583d29: [web-db] implement crypto functions
Summary

Based on SubtleCrypto. Functions we will need for encryption database.

Depends on D6994

Test Plan

Encryption:

  1. Create data ArrayBuffer
  2. Encrypt
  3. Decrypt
  4. Compare

Crypto Key:

  1. Check if it's properly generated
  2. Verify that can not be extracted using js

Diff Detail

Repository
rCOMM Comm
Lint
No Lint Coverage
Unit
No Test Coverage

Event Timeline

kamil created this revision.Mar 7 2023, 9:35 AM
kamil held this revision as a draft.
Herald added subscribers: atul, ashoat. · View Herald TranscriptMar 7 2023, 9:35 AM
kamil added a child revision: D6996: [web-db] generate `CryptoKey` and persist.Mar 7 2023, 9:39 AM
Harbormaster completed remote builds in B17171: Diff 23513.Mar 7 2023, 9:50 AM
kamil added inline comments.Mar 7 2023, 10:10 AM
web/database/utils/worker-crypto-utils.js
26 ↗(On Diff #23513)

this is the recommended size source

kamil published this revision for review.Mar 7 2023, 10:10 AM
ashoat added inline comments.Mar 7 2023, 4:33 PM
web/database/utils/worker-crypto-utils.js
10–11 ↗(On Diff #23513)

Why aren't these read-only?

kamil updated this revision to Diff 23602.Mar 10 2023, 7:14 AM

rebase, make type read-only

web/database/utils/worker-crypto-utils.js
10–11 ↗(On Diff #23513)

oversight, thanks for pointing out

Harbormaster completed remote builds in B17232: Diff 23602.Mar 10 2023, 7:29 AM
kamil updated this revision to Diff 23697.Mar 13 2023, 8:47 AM

there is more crypto-relatud stuff, making names more exact to easily distinguish

kamil added a reviewer: bartek.Mar 13 2023, 8:47 AM
Harbormaster completed remote builds in B17298: Diff 23697.Mar 13 2023, 9:02 AM
bartek added a comment.Mar 15 2023, 3:34 AM

Generally, the code itself looks good to me. But I have a general note regarding naming conventions.
I haven't seen all call sites yet (only the key generation diff is up) so I can't really tell but maybe it's worth revisiting the types and function arguments to have this as clean and consistent as possible.
In my diffs regarding AES encryption, I defined a few naming rules which I stick to (you can find them in this Notion doc). You can take inspiration from them.

If you think there's no point in doing this, just let me know ;)

web/database/utils/worker-crypto-utils.js
5 ↗(On Diff #23697)

What about calling it EncryptedData? See my comment in decryptDatabaseFile

7 ↗(On Diff #23697)

I'd call it ciphertext to be consistent, but up to you

21 ↗(On Diff #23697)

Nit

45–47 ↗(On Diff #23697)

How about connecting cipher and iv by using the EncryptionResult type you defined above (and perhaps renaming the type)? In GCM mode, they always need to be provided together anyways

kamil updated this revision to Diff 23867.Mar 20 2023, 9:04 AM

update types

kamil added a child revision: D7104: [web-db] add unit tests for worker crypto utils.Mar 20 2023, 9:14 AM
kamil removed a child revision: D6996: [web-db] generate `CryptoKey` and persist.
Harbormaster completed remote builds in B17414: Diff 23867.Mar 20 2023, 9:19 AM
kamil added a comment.Mar 20 2023, 9:21 AM

I haven't seen all call sites yet (only the key generation diff is up) so I can't really tell but maybe it's worth revisiting the types and function arguments to have this as clean and consistent as possible.

I updated the types to match those added in D7101.

Also, I added unit tests so you can check possible callsites: D7104

In my diffs regarding AES encryption, I defined a few naming rules which I stick to (you can find them in this Notion doc). You can take inspiration from them.

Oh, I didn't know those rules exist (btw. good job on those).

If you think there's no point in doing this, just let me know ;)

I think your suggestions make sense, thanks!

kamil added a parent revision: D7101: [web-db] add `sql.js` types.Mar 20 2023, 9:24 AM
bartek accepted this revision.Mar 21 2023, 4:32 AM
This revision is now accepted and ready to land.Mar 21 2023, 4:32 AM
kamil updated this revision to Diff 24117.Mar 25 2023, 4:10 AM

rebase before landing

Harbormaster completed remote builds in B17620: Diff 24117.Mar 25 2023, 4:26 AM
kamil added a child revision: D6996: [web-db] generate `CryptoKey` and persist.Mar 25 2023, 4:41 AM
kamil removed a child revision: D7104: [web-db] add unit tests for worker crypto utils.Mar 25 2023, 4:43 AM
Closed by commit rCOMM7096eb583d29: [web-db] implement crypto functions (authored by kamil). · Explain WhyMar 25 2023, 5:01 AM
This revision was automatically updated to reflect the committed changes.
kamil added a commit: rCOMM7096eb583d29: [web-db] implement crypto functions.

Revision Contents
Changeset List

PathSize
web/
database/
utils/
59 lines

Diff 23602

View Options

web/database/utils/worker-crypto-utils.js

Loading...