Skip to content

/ blockstack-browser

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[WIP] Collections support #1940

Open
wants to merge 24 commits into
base: develop
from
Open

[WIP] Collections support #1940

wants to merge 24 commits into from

Conversation

@yknl
Copy link
Collaborator

yknl commented Jul 18, 2019

This PR implements handling of collection scopes, collections storage bucket and encryption key generation based on the design proposal. It makes use of the identity settings feature for storage of encryption key indexes. The key indexes are used to deterministically generate encryption keys for collection buckets. (Credits to @friedger for the suggestion) Key rotation is accomplished by incrementing the index. This reduces the impact of data corruption if randomly generated keys are used instead. This is changed from the original design where encryption keys are generated based on the list of apps granted access.

Some open questions are whether the key generation logic should exist in blockstack.js or in the browser.
yknl added 12 commits Jun 24, 2019
@yknl
Update git ignore.
bd56e72
@yknl
Write and read encrypted settings files for each identity.
Loading status checks…
8ab4b43
@yknl
Identity settings initialization.
Loading status checks…
3396a5f
@yknl
Merge branch 'feature/identity-settings' into feature/collections-sup…
b68c96c 
…port
@yknl
More identity settings initialization.
20fec3e
@yknl
Merge branch 'feature/identity-settings' into feature/collections-sup…
b5af7fe 
…port
@yknl
Identity settings refresh on profile page.
Loading status checks…
b0cdbf9
@yknl
Fix tests for DefaultProfilePage
Loading status checks…
ce1c4a8
@yknl
Merge branch 'feature/identity-settings' into feature/collections-sup…
ceea751 
…port
@yknl
Fix import typo.
Loading status checks…
8a8b14b
@yknl
Merge branch 'feature/identity-settings' into feature/collections-sup…
7ba822b 
…port
@yknl
Implementation of collection key generation and storage.
Loading status checks…
59137b4
@friedger
Copy link
Contributor

friedger commented Jul 19, 2019

A possible use case for collection key generation in more apps (i.e. add key generation to blockstack.js) would be to collections of data that are shared with a group of people across apps.
yknl added 6 commits Aug 12, 2019
@yknl
Clean up auth processing and collection settings code.
Loading status checks…
09861fc
@yknl
Collections utility functions.
db4c701
@yknl
Fix lint.
Loading status checks…
ae7c2eb
@yknl
Fix tests.
Loading status checks…
7937c54
@yknl
Change collections gaia auth token scope to ArchivalPrefix.
Loading status checks…
08071e0
@yknl
Fix issue with Gaia hub url property in api settings being undefined.
Loading status checks…
c4bb7dc
@zone117x zone117x self-requested a review Sep 10, 2019
@hstove
hstove requested changes Sep 11, 2019
View changes
Copy link
Collaborator

hstove left a comment

Generally, I have read through the code, and can understand what is happening. There are two things I'd like to see before I would approve this:

  • More tests. I see one test for ensuring that the collectionsNodeKey is set on an identity keypair - that is good. But there is a lot more that is untested, like everything in collection-utils.
  • Some end-to-end way to test this. Something like a demo app that simply requests the collection scope. Then, I could at least verify that the collections info is stored in the app's storage.
app/js/utils/collection-utils.js Outdated
}

function writeCollectionKeysToAppStorage(appPrivateKey, hubConfig, keyFile) {
const compressedAppPrivateKey = `${appPrivateKey}01`

This comment has been minimized.

Sign in to view
@hstove

hstove Sep 11, 2019

Collaborator

Can you explain why you're doing it this way? I would think you would just use getPublicKeyFromPrivate from blockstack.js. This seems like you're doing some other mechanism for getting the public key.

This comment has been minimized.

Sign in to view
@yknl

yknl Sep 13, 2019

Author Collaborator

You're right, I missed that some how. I addressed it in a new commit.
yknl added 5 commits Sep 12, 2019
@yknl
Merge branch 'develop' into feature/collections-support
2c97ca9
@yknl
Merge branch 'develop' into feature/collections-support
1d23022
@yknl
Fix console warnings
Loading status checks…
5d368b7
@yknl
Use getPublicKeyFromPrivate in collection key generation.
Loading status checks…
f2263f9
@yknl
Fix lint.
Loading status checks…
eb9742f
@zone117x
zone117x reviewed Sep 13, 2019
View changes
Copy link
Member

zone117x left a comment

@hstove testing can be performed using the basic test page here: https://blockstack.github.io/blockstack-collections/page_test/

And running the that same repo locally with npm run start. Should be showing the same files for both apps when using same account.
@zone117x
zone117x reviewed Sep 16, 2019
View changes
app/js/utils/collection-utils.js
|| settings.collections[collectionName].length > 0) {
const defaultCollectionSettings = DEFAULT_NEW_COLLECTION_SETTING_ARRAY
updateIdentityCollectionSettings(collectionName, defaultCollectionSettings)
return Promise.resolve(defaultCollectionSettings[0].encryptionKeyIndex)

This comment has been minimized.

Sign in to view
@zone117x

zone117x Sep 16, 2019

Member

Trying to make sure I understand what's going on here -- is this encryptionKeyIndex intended to be used for bumping in order to perform a key revocation for a given collection type/scope?

This comment has been minimized.

Sign in to view
@yknl

yknl Sep 17, 2019

Author Collaborator

Yes that's correct. This gives us a deterministic way of generating encryption keys for collections.
@zone117x
zone117x reviewed Sep 16, 2019
View changes
Copy link
Member

zone117x left a comment

I've been testing a local build of this in beta mode, with the blockstack.js dependency bumped to the latest preview, and with the https://staging-hub.blockstack.xyz Gaia hub.

Testing contacts collections using the demo apps:

Everything seems to be working as expected. The settings.json file is encrypted and stored next to profile.json. Each app origin receives a .collection.keys file within a bucket unique to each app and collection type, and is able to encrypt & decrypt collection files from other apps.

The collection key derivation logic is a bit hard to follow. It looks correct, but I left a comment where I was unclear on the inputs going into the collection node.
@yknl
Bump version to v0.37.0 alpha 1.
Loading status checks…
39692ac
@jeffdomke jeffdomke added this to the DX Q3 Sprint 3 milestone Oct 3, 2019
@zone117x
zone117x requested changes Oct 14, 2019
View changes
app/js/utils/account-utils.js
.update(`${collectionTypeName}${collectionIdentifier}${this.salt}`)
.digest('hex')
const collectionIndex = hashCode(hash)
const collectionNode = this.hdNode.deriveHardened(collectionIndex)

This comment has been minimized.

Sign in to view
@zone117x

zone117x Oct 14, 2019

Member

We should probably using a longer derivation path here. All of these inputs (collection name, collection ident, salt) end up as only 32 bits of uniqueness.

This is the same problem with app-private-keys that PR #1496 was trying to solve.

This is the blockstack.js function that is able to perform better derivation, which we can leverage for collection HD nodes: https://github.com/blockstack/blockstack.js/blob/e4864ad41f376d963d4917b95996a6032f992789/src/wallet.ts#L289-L312
@yknl yknl mentioned this pull request Oct 17, 2019
Closed
@friedger
friedger reviewed Nov 9, 2019
View changes
app/js/utils/collection-utils.js
.then(results => {
const collectionKeys = results[0]
const collectionHubConfigs = results[1]
return updateAppCollectionKeys(

This comment has been minimized.

Sign in to view
@friedger

friedger Nov 9, 2019

Contributor

@yknl This adds a hard requirement to the blockstack auth flow to be online. In the current flow it is possible to sign-in while offline (for android this works offline, for the web the manifest is needed when not cached).
@jeffdomke jeffdomke removed this from the DX: 2020 Q1 Sprint 4 milestone Mar 2, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@friedger friedger

@hstove hstove

@zone117x zone117x

Assignees
No one assigned
Labels
Impacts DOCS
Projects
None yet
Milestone
No milestone
Linked issues

Successfully merging this pull request may close these issues.

None yet

6 participants
@yknl @friedger @hstove @zone117x @jeffdomke @moxiegirl
You can’t perform that action at this time.