Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[bug] publicKeyMultibase in a DID document is not usable to verify JWT credentials #1248

Closed
mirceanis opened this issue Sep 19, 2023 · 0 comments · Fixed by #1261
Closed

[bug] publicKeyMultibase in a DID document is not usable to verify JWT credentials #1248

mirceanis opened this issue Sep 19, 2023 · 0 comments · Fixed by #1261
Labels
bug Something isn't working pinned don't close this just for being stale

Comments

@mirceanis
Copy link
Member

Bug severity
3

Describe the bug

Credentials issued by did:peer fail verification.
Here is a sample test to reproduce the issue:

    // using an agent with `@veramo/did-provider-peer#PeerDIDProvider`
    // and `@veramo/did-provider-peer#getResolver`

    // did:peer uses publicKeyMultibase
    const issuer = await agent.didManagerCreate({
      provider: 'did:peer',
      options: {
        num_algo: 0
      }
    })
    const payload = {
      issuer: issuer.did,
      credentialSubject: {
        nothing: 'else matters',
      },
    }
    const credential = await agent.createVerifiableCredential({
      credential: payload,
      proofFormat: 'jwt',
    })
    const verifyResult = await agent.verifyCredential({ credential })
    expect(verifyResult.verified).toBeTruthy()

Details
It seems that the publicKeyMultibase is a multibase encoding of a multicodec encoding of an ed25519 public key.
did-jwt@7.2.5 doesn't know how to interpret the multicodec encoding so it tries to use the byte array as is so verification fails.

The fix would be in the did-jwt library.

Versions (please complete the following information):

  • Veramo: 5.4.1
  • did-jwt: 7.2.5
@mirceanis mirceanis added the bug Something isn't working label Sep 19, 2023
@mirceanis mirceanis changed the title publicKeyMultibase in a DID document is not usable to verify JWT credentials [bug] publicKeyMultibase in a DID document is not usable to verify JWT credentials Sep 19, 2023
@mirceanis mirceanis added the pinned don't close this just for being stale label Sep 19, 2023
mirceanis added a commit that referenced this issue Sep 27, 2023
@mirceanis
fix(utils): bump did-jwt to 7.4.1 and reuse key conversion code from it
d7278cd 
fixes #1248
@mirceanis mirceanis mentioned this issue Sep 27, 2023
Merged
5 tasks
mirceanis added a commit that referenced this issue Sep 27, 2023
@mirceanis
fix(utils): bump did-jwt to 7.4.1 and reuse key conversion code from it
b2e8e96 
fixes #1248
mirceanis added a commit that referenced this issue Sep 27, 2023
@mirceanis
fix(utils): bump did-jwt to 7.4.1 and reuse key conversion code from …
fb192e7 
…it (#1261)

fixes #1248
closes #1245
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working pinned don't close this just for being stale
Projects
None yet
Milestone
No milestone
1 participant
@mirceanis