Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: did:peer:2 creation and parsing #1752

Merged
merged 5 commits into from
Feb 15, 2024
Merged

fix: did:peer:2 creation and parsing #1752

merged 5 commits into from
Feb 15, 2024

Conversation

genaris
Copy link
Contributor

@genaris genaris commented Feb 8, 2024
edited
Loading

Changes in did:peer:2 creation and parsing as specified in https://identity.foundation/peer-did-method-spec/#method-2-multiple-inception-key-without-doc. Basically:

  • When creating did:peer:2, encode multiple services separately (i.e. in concatenated 'S' tokens instead of a single token containing the list). Verification methods are named using '#key-N' pattern and ordered
  • When resolving a did:peer:2, name verification methods with the pattern "did#key-N" rather than "did#fingerprint"

I need to add some more tests and use cases check if it might represent an issue with AFJ 0.4.2 (apparently not).

Closes #1682

@genaris
fix: did:peer:2 creation and parsing
e4bb62e 
Signed-off-by: Ariel Gentile <gentilester@gmail.com>
genaris
genaris commented Feb 13, 2024
View reviewed changes
packages/core/src/modules/dids/methods/peer/peerDidNumAlgo2.ts Outdated
}

// Add all encoded keys ordered by their id (#key-1, #key-2, etc.)
did += keys
.sort((a, b) => a.id.localeCompare(b.id))
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this will fail in case of >= 10 keys within a did:peer, so we should use a regex/remove '#key-' prefix and do the sorting numerically

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Aren't the keys already sorted by default? I think we always process them start to end right?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Given that our input is a modeled DidDocument, In didDocumentToNumAlgo2Did() we are sorting by key purpose (first assertionMethods, then keyAgreement, authentication, etc.), so it might happen that a key referenced by a service will not be encoded in the order we expect (e.g. mixing up verification key and key agreement key, or using key from another service). This is mainly the reason for this concern.

@TimoGlastra TimoGlastra added this to the 0.5 milestone Feb 14, 2024
@TimoGlastra
Copy link
Contributor

@genaris any big changes still needed for this PR?

@genaris genaris marked this pull request as ready for review February 14, 2024 13:19
@genaris
Copy link
Contributor Author

genaris commented Feb 14, 2024

@genaris any big changes still needed for this PR?

I think there are no more changes needed from my side, unless we find a better way of handling these changes in the spec. I don't like so much the idea of limiting the key ids to the pattern 'key-N' (any call an existing app makes to agent.dids.create() for did:peer:2 not taking this into consideration will fail), but given the current state I think it safer to do so instead of doing some 'smart transformation' within did peer creation process (e.g. turning any key from input DidDocument into 'key-N' and make sure every reference to it is updated accordingly).

@TimoGlastra
Copy link
Contributor

e.g. turning any key from input DidDocument into 'key-N' and make sure every reference to it is updated accordingly

Agreed. I've had this with several other did methods though, and it may be interesting to look at a better did builder pattern so you can input what type of did doc you want and the did registrar turns it into something compatible with the method.

E.g. i want two verificationMethods, one with keyType ed25519, the other one with this specific key. And most fields will just be optional and populated later on.

TimoGlastra
TimoGlastra approved these changes Feb 15, 2024
View reviewed changes
packages/core/src/modules/dids/methods/peer/peerDidNumAlgo2.ts
// Add all encoded keys
did += encoded.join('')
const prefix = 'key-'
if (!keys.every((key) => key.id.split('#')[1]?.startsWith(prefix))) {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Might be better/cleaner to use parseDid here?

@TimoGlastra TimoGlastra merged commit 7c60918 into openwallet-foundation:main Feb 15, 2024
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TimoGlastra TimoGlastra TimoGlastra approved these changes

Assignees
No one assigned
Labels
None yet
Projects
Credo - ARF Compliance
Status: Done
Milestone
0.5
Development

Successfully merging this pull request may close these issues.

Multiple services are encoded within did:peer:2 incorrectly
2 participants
@genaris @TimoGlastra