Encrypt and decrypt entries and payloads

2025-10-07 22:57:07 +00:00 · 2024-06-27 11:43:38 +03:00
parent 7e5672eff0
commit f30789fece
8 changed files with 326 additions and 105 deletions
--- a/test/orbitdb-encryption.test.js
+++ b/test/orbitdb-encryption.test.js
@@ -4,26 +4,32 @@ import path from 'path'
 import OrbitDB from '../src/orbitdb.js'
 // import waitFor from './utils/wait-for.js'
 import connectPeers from './utils/connect-nodes.js'
+import waitFor from './utils/wait-for.js'
 // import IPFSAccessController from '../src/access-controllers/ipfs.js'
 // import OrbitDBAccessController from '../src/access-controllers/orbitdb.js'
 import createHelia from './utils/create-helia.js'
-import { encrypt, decrypt } from './utils/encrypt.js'
+import { encrypt, decrypt, generatePassword } from './utils/encrypt.js'

 const dbPath = './orbitdb/tests/write-permissions'

-describe('Encryption/Decryption', function () {
-  this.timeout(20000)
+describe.only('Encryption/Decryption', function () {
+  this.timeout(5000)

  let ipfs1, ipfs2
  let orbitdb1, orbitdb2
-  let db1 /*, db2 */
+  let db1, db2
+  let encryptionPassword

  before(async () => {
    [ipfs1, ipfs2] = await Promise.all([createHelia(), createHelia()])
    await connectPeers(ipfs1, ipfs2)

+    await rimraf('./orbitdb')
+
    orbitdb1 = await OrbitDB({ ipfs: ipfs1, id: 'user1', directory: path.join(dbPath, '1') })
    orbitdb2 = await OrbitDB({ ipfs: ipfs2, id: 'user2', directory: path.join(dbPath, '2') })
+
+    encryptionPassword = await generatePassword()
  })

  after(async () => {
@@ -51,38 +57,87 @@ describe('Encryption/Decryption', function () {
  afterEach(async () => {
    await db1.drop()
    await db1.close()
-
-    // await db2.drop()
-    // await db2.close()
+    await db2.drop()
+    await db2.close()
  })

-  it('encrypts/decrypts data', async () => {
-    const keystore = orbitdb1.keystore
-    const keys = await keystore.createKey('encryption-test')
+  it.skip('encrypts/decrypts payload', async () => {
+    const encryptPayloadFn = encrypt({ password: encryptionPassword })
+    const decryptPayloadFn = decrypt({ password: encryptionPassword })

-    const privateKey = await keystore.getKey('encryption-test')
-    const publicKey = await keystore.getPublic(keys)
-
-    const encryptFn = encrypt({ publicKey })
-    const decryptFn = decrypt({ privateKey })
-    db1 = await orbitdb1.open('encryption-test-1', { encrypt: { data: { encryptFn, decryptFn } } })
+    db1 = await orbitdb1.open('encryption-test-1', { encryption: { encryptPayloadFn, decryptPayloadFn } })

    const hash = await db1.add('record 1')
+
+    for await (const e of db1.log.iterator()) {
+      console.log('>', e)
+    }
+
    strictEqual(await db1.get(hash), 'record 1')
  })

-  it('encrypts/decrypts op', async () => {
-    const keystore = orbitdb1.keystore
-    const keys = await keystore.createKey('encryption-test')
+  it.only('encrypts/decrypts entry', async () => {
+    let connected = false
+    let updated = false
+    let error = false

-    const privateKey = await keystore.getKey('encryption-test')
-    const publicKey = await keystore.getPublic(keys)
+    const encryptPayloadFn = encrypt({ password: encryptionPassword })
+    const decryptPayloadFn = decrypt({ password: encryptionPassword })

-    const encryptFn = encrypt({ publicKey })
-    const decryptFn = decrypt({ privateKey })
-    db1 = await orbitdb1.open('encryption-test-1', { encrypt: { op: { encryptFn, decryptFn } } })
+    const encryptEntryFn = encrypt({ password: encryptionPassword })
+    const decryptEntryFn = decrypt({ password: encryptionPassword })

-    const hash = await db1.add('record 1')
-    strictEqual(await db1.get(hash), 'record 1')
+    // const decryptPayloadFn2 = encrypt({ password: encryptionPassword + '1' })
+    // const decryptEntryFn2 = decrypt({ password: encryptionPassword + '2' })
+
+    db1 = await orbitdb1.open('encryption-test-1', { encryption: { encryptEntryFn, decryptEntryFn, encryptPayloadFn, decryptPayloadFn } })
+    db2 = await orbitdb2.open(db1.address, { encryption: { encryptEntryFn, decryptEntryFn, encryptPayloadFn, decryptPayloadFn } })
+    // db1 = await orbitdb1.open('encryption-test-1', { encryption: { encryptEntryFn, decryptEntryFn } })
+    // db2 = await orbitdb2.open(db1.address, { encryption: { encryptEntryFn, decryptEntryFn } })
+    // db1 = await orbitdb1.open('encryption-test-1', { encryption: { encryptPayloadFn, decryptPayloadFn } })
+    // db2 = await orbitdb2.open(db1.address, { encryption: { encryptPayloadFn, decryptPayloadFn } })
+    // db1 = await orbitdb1.open('encryption-test-1')
+    // db2 = await orbitdb2.open(db1.address)
+
+    console.log('connect')
+
+    const onJoin = async (peerId, heads) => {
+      console.log('connected')
+      connected = true
+    }
+    db2.events.on('join', onJoin)
+
+    await waitFor(() => connected, () => true)
+
+    const onUpdate = async (peerId, heads) => {
+      console.log('updated')
+      updated = true
+    }
+    db2.events.on('update', onUpdate)
+
+    const onError = async (err) => {
+      // Catch "Could not decrypt entry" errors
+      console.log(err)
+      error = true
+    }
+    db2.events.on('error', onError)
+
+    console.log('write')
+    const hash1 = await db1.add('record 1')
+    console.log('hash1', hash1)
+    const hash2 = await db1.add('record 2')
+    console.log('hash2', hash2)
+
+    strictEqual(await db1.get(hash1), 'record 1')
+    strictEqual(await db1.get(hash2), 'record 2')
+
+    await waitFor(() => updated || error, () => true)
+
+    const all = await db2.all()
+    console.log('all', all)
+
+    strictEqual(all.length, 2)
+    strictEqual(all[0].value, 'record 1')
+    strictEqual(all[1].value, 'record 2')
  })
 })