Skip to content

Commit

Permalink
wip
Browse files Browse the repository at this point in the history
  • Loading branch information
@krpeacock
krpeacock committed Aug 25, 2023
1 parent 96e90b9 commit 298d373
Show file tree
Hide file tree
Showing 2 changed files with 39 additions and 0 deletions.
26 changes: 26 additions & 0 deletions packages/identity/src/identity/delegation.test.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -164,3 +164,29 @@ test('Delegation targets cannot exceed 1_000', () => {
'Delegation targets cannot exceed 1000',
);
});

test('Delegation chains cannot repeat public keys', async () => {
const root = createIdentity(0);
const middle = createIdentity(1);
const bottom = createIdentity(2);

const rootToMiddle = await DelegationChain.create(
root,
middle.getPublicKey(),
new Date(1609459200000),
);
const middleToBottom = await DelegationChain.create(
middle,
bottom.getPublicKey(),
new Date(1609459200000),
{
previous: rootToMiddle,
},
);

expect(
DelegationChain.create(bottom, root.getPublicKey(), new Date(1609459200000), {
previous: middleToBottom,
}),
).rejects.toThrow('Delegation chain cannot repeat public keys');
});
13 changes: 13 additions & 0 deletions packages/identity/src/identity/delegation.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -195,6 +195,18 @@ export class DelegationChain {
targets?: Principal[];
} = {},
): Promise<DelegationChain> {
if (options.previous) {
const delegatedKeys: PublicKey[] = [
...options.previous.delegations.map(signedDelegation => signedDelegation.delegation.pubkey),
from.getPublicKey(),
to,
];
const delegatedKeysSet = new Set(delegatedKeys.map(key => toHexString(key.derKey)));
if (delegatedKeys.length !== delegatedKeysSet.size) {
throw new DelegationError('Delegation chain cannot repeat public keys');
}
}

const delegation = await _createSingleDelegation(from, to, expiration, options.targets);
return new DelegationChain(
[...(options.previous?.delegations || []), delegation],
Expand Down Expand Up @@ -255,6 +267,7 @@ export class DelegationChain {
protected constructor(
public readonly delegations: SignedDelegation[],
public readonly publicKey: DerEncodedPublicKey,
public readonly previous?: DelegationChain,
) {
if (delegations.length > MAXIMUM_DELEGATION_CHAIN_LENGTH) {
throw new DelegationError(
Expand Down

0 comments on commit 298d373

Please sign in to comment.