Embedded key loader #82

demonsh · 2024-12-26T13:31:24Z

NewEmbeddedKeyLoader with embedded verification keys for:

authV2.json
credentialAtomicQueryMTPV2.json
credentialAtomicQueryMTPV2OnChain.json
credentialAtomicQuerySigV2.json
credentialAtomicQuerySigV2OnChain.json
credentialAtomicQueryV3-beta.1.json
credentialAtomicQueryV3OnChain-beta.1.json
linkedMultiQuery10-beta.1.json

Updated readme

- added configuration for NewEmbeddedKeyLoader - added examples for supported networks - minor improvements and links to the resources added

loaders/embededKeyLoader.go

loaders/keys/authV2.json

…NotFound to propagate loading

ilya-korotya · 2025-01-13T11:00:46Z

README.md

+     }
+
+     resolvers := map[string]pubsignals.StateResolver{
+       "polygon:mumbai": resolver,


polygon:mumbai is not supported, could you update to polygon:amoy

ilya-korotya · 2025-01-13T11:05:21Z

loaders/embededKeyLoader.go

+type EmbeddedKeyLoader struct {
+	keyLoader VerificationKeyLoader
+	cache     map[circuits.CircuitID][]byte
+	cacheMu   sync.RWMutex


https://pkg.go.dev/sync#RWMutex

A RWMutex must not be copied after first use.

Use pointer to sync.RWMutex to prevent copy in methods.

ilya-korotya · 2025-01-13T11:08:03Z

loaders/embededKeyLoader.go

+	if e.keyLoader != nil {
+		key, err := e.keyLoader.Load(id)
+		if err == nil {
+			if e.useCache {


move to deffer to prevent copy-past

You can set the deffer after cache check to not perform the deffer if the keys are found in the cache

ilya-korotya · 2025-01-13T11:12:13Z

loaders/embededKeyLoader_test.go

+	})
+}
+
+func TestDefaultEmbeddedKeys(t *testing.T) {


golang table driven tests
https://dev.to/boncheff/table-driven-unit-tests-in-go-407b

ilya-korotya · 2025-01-13T11:13:52Z

loaders/embededKeyLoader_test.go

+		loader := NewEmbeddedKeyLoader()
+		_, err := loader.Load("non-existent-circuit")
+		assert.Error(t, err)
+		assert.Contains(t, err.Error(), "failed to load default key")


Compare error text is bad practice. Try to use assert.ErrorsIs or assert.ErrorAs

ilya-korotya · 2025-01-13T11:18:00Z

loaders/embededKeyLoader.go

+type EmbeddedKeyLoader struct {
+	keyLoader VerificationKeyLoader
+	cache     map[circuits.CircuitID][]byte
+	cacheMu   sync.RWMutex


Consider to use https://pkg.go.dev/sync#Map

ilya-korotya · 2025-01-13T11:21:29Z

loaders/embededKeyLoader_test.go

+			wg.Add(1)
+			go func() {
+				defer wg.Done()
+				key := loader.getFromCache(testID)


In my opinion, this test is not useful. Since you are testing parallel reads without write operations, there is no concurrency issue.

ilya-korotya · 2025-01-13T11:25:15Z

loaders/key.go

@@ -19,5 +20,9 @@ type FSKeyLoader struct {

 // Load keys from embedded FS
 func (m FSKeyLoader) Load(id circuits.CircuitID) ([]byte, error) {
-	return os.ReadFile(fmt.Sprintf("%s/%v.json", m.Dir, id))
+	file, err := os.ReadFile(fmt.Sprintf("%s/%v.json", m.Dir, id))


Possible attack: https://rowin.dev/blog/preventing-path-traversal-attacks-in-go
In your case, the path and filename are constants. It is secure. But make sure that the security issue is not reproduced in your implementation.

demonsh added 11 commits December 23, 2024 00:30

Added EmbeddedKeyLoader

d2f238b

Added production verification keys for embedded keys loader

a0871bd

Added tests for NewEmbeddedKeyLoader

1d2beba

Fix comment

703e38f

Added beta keys

ea434c8

Renamed WithoutCache -> WithCacheDisabled

9e450b4

Add log if key not found in primary loader

7b46231

Tests updated

ffdcd6f

Add tests

1e6de8e

Update readme

ac5f583

- added configuration for NewEmbeddedKeyLoader - added examples for supported networks - minor improvements and links to the resources added

Fix typo

f1112f4

demonsh requested review from olomix, OBrezhniev, ilya-korotya and vmidyllic December 26, 2024 13:31

demonsh changed the title ~~Embeded key loader~~ Embedded key loader Dec 26, 2024

olomix previously approved these changes Jan 2, 2025

View reviewed changes

loaders/embededKeyLoader.go Outdated Show resolved Hide resolved

loaders/keys/authV2.json Outdated Show resolved Hide resolved

demonsh added 4 commits January 6, 2025 18:54

Rename folder keys to verification_keys

12959ad

Rename folder keys to verification_keys

57b1a5e

Update Loader. if key not found loader should provide specific ErrKey…

b2e15cd

…NotFound to propagate loading

Update file loader.

b10529e

demonsh dismissed olomix’s stale review via b10529e January 6, 2025 18:57

demonsh requested a review from olomix January 6, 2025 18:57

Add fix for empty cache

2e159e6

vmidyllic previously approved these changes Jan 8, 2025

View reviewed changes

olomix previously approved these changes Jan 9, 2025

View reviewed changes

ilya-korotya reviewed Jan 13, 2025

View reviewed changes

minor fix

4e4c5fc

demonsh dismissed stale reviews from olomix and vmidyllic via 4e4c5fc January 13, 2025 12:01

demonsh added 4 commits January 13, 2025 12:46

minor fix test

f8b88fa

simplify test

5996db8

change mutex value to pointer

f30eb36

remove redundant test

60edc8b

olomix approved these changes Jan 14, 2025

View reviewed changes

ilya-korotya approved these changes Jan 14, 2025

View reviewed changes

vmidyllic approved these changes Jan 14, 2025

View reviewed changes

demonsh merged commit 27356eb into main Jan 14, 2025
3 checks passed

demonsh deleted the feature/embeded-key-loader branch January 14, 2025 17:26

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Embedded key loader #82

Embedded key loader #82

Embedded key loader #82

Embedded key loader #82

Conversation

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment