Skip to content

crypto: allow inspecting a crypto key prototype #57890

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

crypto: allow inspecting a crypto key prototype #57890

wants to merge 1 commit into from

Conversation

BridgeAR
Copy link
Member

This would fail so far due to accessing a undefined property.

@nodejs-github-bot
Copy link
Collaborator

Review requested:

  • @nodejs/crypto

@nodejs-github-bot nodejs-github-bot added crypto Issues and PRs related to the crypto subsystem. needs-ci PRs that need a full CI run. labels Apr 15, 2025
@BridgeAR BridgeAR changed the title crypto: allow inspecting a crypto key constructor crypto: allow inspecting a crypto key prototype Apr 15, 2025
@BridgeAR BridgeAR force-pushed the fix-crypto-inspect branch from 18d0465 to 25242b2 Compare April 15, 2025 12:31
panva
panva reviewed Apr 15, 2025
View reviewed changes
@codecov Codecov
Copy link

codecov bot commented Apr 15, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 90.21%. Comparing base (f89baf2) to head (7215b4a).
Report is 369 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #57890      +/-   ##
==========================================
- Coverage   90.24%   90.21%   -0.04%     
==========================================
  Files         630      630              
  Lines      185670   186445     +775     
  Branches    36401    36621     +220     
==========================================
+ Hits       167567   168196     +629     
- Misses      10992    11052      +60     
- Partials     7111     7197      +86
Files with missing lines Coverage Δ
lib/internal/crypto/keys.js 95.40% <100.00%> (ø)

... and 95 files with indirect coverage changes

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@BridgeAR BridgeAR force-pushed the fix-crypto-inspect branch 2 times, most recently from 0a09337 to 6b1cc1d Compare April 29, 2025 17:01
@BridgeAR BridgeAR requested review from panva and jasnell April 29, 2025 17:03
panva
panva previously approved these changes Apr 29, 2025
View reviewed changes
@BridgeAR
crypto: allow inspecting the prototype of a crypto key
7215b4a 
This would fail so far due to accessing a undefined property.
@BridgeAR BridgeAR force-pushed the fix-crypto-inspect branch from 6b1cc1d to 7215b4a Compare April 30, 2025 01:29
tniessen
tniessen reviewed Apr 30, 2025
View reviewed changes
Copy link
Member

@tniessen tniessen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If this is only necessary for inspect(), perhaps the fix could be inside [kInspect]() { ... }? In any other case, get type() should throw if this[kKeyObject] is undefined.

@BridgeAR
Copy link
Member Author

BridgeAR commented May 3, 2025

@tniessen I thought about that as well initially but discarded the thought, when thinking about directly accessing the property. I think it should just return undefined in that case, since it would otherwise be a bad error message for the user.

@panva panva dismissed their stale review May 4, 2025 10:44

dismissing my approval, @tniessen is correct in that if the property is not defined a throw is appropriate behaviour for regular instances of CryptoKey

@BridgeAR
Copy link
Member Author

BridgeAR commented May 7, 2025

@panva @jasnell @tniessen would one of you mind picking this up? I just stumbled upon it while working on something else and I did not expect a lot of bikeshedding in this case. I don't really feel strongly enough about either implementation.
I do think this does improve the current status quo.

The current suggestion would require all of our instanceof checks to be extended to the accessed property being accessible in all getters to have a consistent behavior (accessing .type would otherwise throw while accessing the other properties would not, even though they are also undefined). So changing all is the only consistent way I can think about, while I don't feel strongly enough about this to implement this and would otherwise close the PR.

@panva
Copy link
Member

panva commented May 7, 2025

@BridgeAR what are the use cases for inspecting the prototype in the first place? (genuinely just curious here)

@BridgeAR
Copy link
Member Author

what are the use cases for inspecting the prototype

@panva I have none. I just wrote some tests elsewhere and this failed. The current error message is quite bad in that case (accessing a property of undefined). I also wondered about it meant to fail as @tniessen pointed out, but doing that only for .type would be highly inconsistent with all other properties, so I decided to just be lenient and show undefined (which I find is actually fine for this specific case).

@tniessen
Copy link
Member

I am a bit confused as to what the desired output is (other than not throwing an error). I assumed inspecting the prototype should behave like inspecting many other prototypes in Node.js, e.g., type: [Getter].

I think the root problem is that this instanceof CryptoKey evaluates to true for the prototype, probably because the key is actually an instance of InternalCryptoKey and the prototype of InternalCryptoKey.prototype is CryptoKey.prototype?

@tniessen
Copy link
Member

The current suggestion would require all of our instanceof checks to be extended to the accessed property being accessible in all getters to have a consistent behavior

I also wondered about it meant to fail as @tniessen pointed out, but doing that only for .type would be highly inconsistent with all other properties

To clarify, I was not suggesting that we should explicitly check for this case and throw in the getters. If we can somehow fix the prototype chain such that Object.getProtoypeOf(key) instanceof CryptoKey becomes false, that'd be great just to prevent this sort of scenario (and for consistency with other runtimes).

I decided to just be lenient and show undefined (which I find is actually fine for this specific case).

I think that, if this patch ends up explicitly allowing this[kKeyObject] to be undefined, then there should at least be a comment inside the getter explaining the edge case that makes it necessary, since I'd be very surprised to come across this as a reader.

In the end, explicitly allowing this might not be a particularly elegant solution, but since we are talking about JavaScript, I can live with that.

@BridgeAR
Copy link
Member Author

I'll go ahead and close this for now. I don't think it's important enough for now.

@BridgeAR BridgeAR closed this May 27, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tniessen tniessen tniessen left review comments

@panva panva panva left review comments

@jasnell jasnell Awaiting requested review from jasnell

Assignees
No one assigned
Labels
crypto Issues and PRs related to the crypto subsystem. needs-ci PRs that need a full CI run.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@BridgeAR @nodejs-github-bot @panva @tniessen @jasnell