[feat] Support JSON-LD signatures - Implied Akkoma is misbehaving #471

New issue

Closed

opened 2023-02-18 06:58:27 +00:00 by gamerfort · 8 comments

gamerfort commented 2023-02-18 06:58:27 +00:00

Copy link

The idea

I was looking to set up a possible relay and found the following recent change in the documentation for Asonix relay software:

9b809913ad

	### Known issues
Pleroma and Akkoma do not support validating JSON-LD signatures, meaning many activities such as Delete, Update, Add, and Remove will be rejected with a message similar to `WARN: Response from https://example.com/inbox, "Invalid HTTP Signature"`. This is normal and not an issue with the relay.

I don't know quite what that means, but I suspect it isn't the HTTP signature, but a separate JSON-LD signature.

This request would be to add validation of JSON-LD signatures.

The reasoning

I'm not quite sure of the scope of the comment in the Asonix relay documentation, but it seems to imply that Akkoma instances are "misbehaving?" when it comes to many core Activities?

Since I don't really understand all the technical details, I don't know how "serious" the situation is, but it certainly seems to imply that Akkoma instances won't honor Delete, Update, Add, and Remove activities from subscribed instances.

Have you searched for this feature request?

• I have double-checked and have not found this feature request mentioned anywhere.
• This feature is related to the Akkoma backend specifically, and not pleroma-fe.

### The idea I was looking to set up a possible relay and found the following recent change in the documentation for Asonix relay software: https://git.asonix.dog/asonix/relay/commit/9b809913ad05a2ba773956bed6bee34d68ba3838 ``` ### Known issues Pleroma and Akkoma do not support validating JSON-LD signatures, meaning many activities such as Delete, Update, Add, and Remove will be rejected with a message similar to `WARN: Response from https://example.com/inbox, "Invalid HTTP Signature"`. This is normal and not an issue with the relay. ``` I don't know quite what that means, but I suspect it isn't the HTTP signature, but a separate JSON-LD signature. This request would be to add validation of JSON-LD signatures. ### The reasoning I'm not quite sure of the scope of the comment in the Asonix relay documentation, but it seems to imply that Akkoma instances are "misbehaving?" when it comes to many core Activities? Since I don't really understand all the technical details, I don't know how "serious" the situation is, but it certainly seems to imply that Akkoma instances won't honor Delete, Update, Add, and Remove activities from subscribed instances. ### Have you searched for this feature request? - [x] I have double-checked and have not found this feature request mentioned anywhere. - [x] This feature is related to the Akkoma backend specifically, and not pleroma-fe.

gamerfort added the

feature request

label 2023-02-18 06:58:27 +00:00

gamerfort changed title from [feat] Support JSON-LD signatures to [feat] Support JSON-LD signatures - Implied Akkoma is misbehaving 2023-02-18 07:00:14 +00:00

luna commented 2023-02-18 17:46:19 +00:00

Contributor

Copy link

Adding context: from what I understand, ActivityPub as a specification does not actually say how to sign posts, so there's two approaches adopted by implementations: JSON-LD and HTTP Signatures. The thing with JSON-LD signatures is that they are embedded in post bodies and so, can be relayed towards other citizens of the web that also support JSON-LD relatively easily, HTTP signatures only apply to a single request/response, and so, are detached from the request/response body, so the approach to relay them is different.

Mastodon already generates HTTP Signatures, it's why none of this has caught fire over the years, the issue is more about relays that emit JSON-LD specifically rather than Akkoma won't support posts from other instances, as most implementations generate HTTP sigs.

I don't know the context of why Pleroma has not added support JSON-LD, maybe code complexity? Any Pleroma archeologists around here to help on that one?

Adding context: from what I understand, ActivityPub as a specification does not actually say how to sign posts, so there's two approaches adopted by implementations: JSON-LD and HTTP Signatures. The thing with JSON-LD signatures is that they are embedded in post bodies and so, can be relayed towards other citizens of the web that also support JSON-LD relatively easily, HTTP signatures only apply to a single request/response, and so, are detached from the request/response body, so the approach to relay them is different. Mastodon already generates HTTP Signatures, it's why none of this has caught fire over the years, the issue is more about relays that emit JSON-LD *specifically* rather than Akkoma won't support posts from other instances, as most implementations generate HTTP sigs. I don't know the context of why Pleroma has not added support JSON-LD, maybe code complexity? Any Pleroma archeologists around here to help on that one?

gamerfort commented 2023-02-18 17:59:42 +00:00

Author

Copy link

Thank you for the added context. I wonder now if there is wide support for JSON-LD signatures. The rest of that change commit seems to say that it's pretty common. Either way I also wonder why it wasn't added. I wonder also since Mastodon apparently only processes JSON-LD as simple JSON instead of JSON-LD.

Thank you for the added context. I wonder now if there is wide support for JSON-LD signatures. The rest of that change commit seems to say that it's pretty common. Either way I also wonder why it wasn't added. I wonder also since Mastodon apparently only processes JSON-LD as simple JSON instead of JSON-LD.

gamerfort commented 2023-02-18 18:15:17 +00:00

Author

Copy link

https://docs.joinmastodon.org/spec/security/

Looks like Mastodon does use them some, but specifically recommends against implementing them due to being superceeded.

https://docs.joinmastodon.org/spec/security/ Looks like Mastodon does use them some, but specifically recommends against implementing them due to being superceeded.

floatingghost commented 2023-02-18 18:16:00 +00:00

Owner

Copy link

JSON-LD is not supported because it is notably different to the raw data and the pattern matching would completely break

JSON-LD is not supported because it is notably different to the raw data and the pattern matching would completely break

gamerfort commented 2023-02-18 18:43:54 +00:00

Author

Copy link

JSON-LD is not supported because it is notably different to the raw data and the pattern matching would completely break

Would this apply to just signature verification as well? I don't know enough and just trying to understand.

> JSON-LD is not supported because it is notably different to the raw data and the pattern matching would completely break Would this apply to just signature verification as well? I don't know enough and just trying to understand.

floatingghost commented 2023-02-18 18:49:46 +00:00

Owner

Copy link

well yes, we can't pattern match the signature if we don't ld-decode the entire document

well yes, we can't pattern match the signature if we don't ld-decode the entire document

gamerfort commented 2023-02-18 18:58:49 +00:00

Author

Copy link

well yes, we can't pattern match the signature if we don't ld-decode the entire document

I thought Mastodon doesn't actually process as JSON-LD either and just parses as simple JSON.

https://mastodon.online/@Gargron@mastodon.social/109837277162493708

And the Mastodon documents list how they take the JSON key pairs and validate the signature.

"signature": {
    "type": "RsaSignature2017",
    "creator": "https://mastodon.example/users/username#main-key",
    "created": "2019-12-08T03:48:33.901Z",
    "signatureValue": "s69F3mfddd99dGjmvjdjjs81e12jn121Gkm1"
}
Verifying LD signatures

To verify a signature, Mastodon uses the following algorithm:

Make sure that a signature exists and is a hash.
Make sure that signature[type] is RsaSignature2017.
Fetch the signature[creator] URI. Make sure the creator exists.
Strip type, id, and signatureValue from the signature, leaving only signature[creator] and signature[created].
Base64-decode the signatureValue and verify it against the public key in signature[creator].

> well yes, we can't pattern match the signature if we don't ld-decode the entire document I thought Mastodon doesn't actually process as JSON-LD either and just parses as simple JSON. https://mastodon.online/@Gargron@mastodon.social/109837277162493708 And the Mastodon documents list how they take the JSON key pairs and validate the signature. ``` "signature": { "type": "RsaSignature2017", "creator": "https://mastodon.example/users/username#main-key", "created": "2019-12-08T03:48:33.901Z", "signatureValue": "s69F3mfddd99dGjmvjdjjs81e12jn121Gkm1" } Verifying LD signatures To verify a signature, Mastodon uses the following algorithm: Make sure that a signature exists and is a hash. Make sure that signature[type] is RsaSignature2017. Fetch the signature[creator] URI. Make sure the creator exists. Strip type, id, and signatureValue from the signature, leaving only signature[creator] and signature[created]. Base64-decode the signatureValue and verify it against the public key in signature[creator]. ```

floatingghost commented 2023-03-08 17:43:55 +00:00

Owner

Copy link

it appears that ld signatures are long deprecated and some new standard is proposed

it appears that ld signatures are long deprecated and some new standard is proposed

👍 1

floatingghost closed this issue 2023-07-25 11:16:03 +00:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

develop

better-stats

stable

translations

customizable-docker-db

static-adminfe

bad-uploader-config-warning

docker

user-expiry-backfill

config-db-keys

ensure-scrubbers-loaded

otp26

code-shaking-does-not-go-brr

elixir1.15

circleci

backup-fixes

mod-task

policy

mrf-coolness

frontend-switcher-9000

contentMap

language-on-posts

rabbit

credo-on-pr

unify-http

normalise-markup-by-default

buildx

v3.13.3

v3.13.2

v2.6.3

v3.13.1

v3.13.0

snac-3.12.1.2

v3.12.2

snac-3.12.1.1

v3.12.1

v3.12.0

v3.11.0

v2.6.2

v2.6.1

2.6.1

v2.6.0

v2.5.5

v3.10.4

v3.10.3

v3.10.2

v3.10.1

v3.10.0

v2.5.4

v2.5.3

v3.9.3

v3.9.2

v3.9.1

V3.9.0

2023.05

v3.8.0

v3.7.1

v3.7.0

v3.6.0

v3.5.0

v2.4.5

v3.4.0

v3.3.1

v2.4.4

v3.3.0

v3.2.3

v3.2.2

v3.2.1

stable-202209

v3.2.0

v3.1.0

stable-2022.07

v3.0.0

v0.0.1

v2.5.2-6

v2.5.2-5

v2.5.2-4

v2.5.2-3

v2.5.2-2

v2.5.2-1

v2.5.2

v2.5.1

v2.5.0-8

v2.5.0-7

v2.5.0-6

v2.5.0-5

v2.5.0-4

v2.5.0-3

v2.5.0-2

v2.5.0-1

v2.5.0

v2.4.3

pre-rebase

v2.4.2

v2.4.1

v2.4.0

soapbox-v1.1.1

soapbox-v1.1.0

soapbox-v1.0.0

v2.3.0

v2.2.2

v2.2.1

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.1.9

v1.1.8

v1.1.7

v1.1.6

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.91

v1.0.90

v1.0.7

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

v0.9.0

Labels

Clear labels   

approved, awaiting change

  

bug

Something is not working

  

configuration

This requires config changes

  

documentation

This is about human-readable docs

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

extremely low priority

  

feature request

Something new?

  

Fix it yourself

Support has been attempted

  

help wanted

Need some help

  

invalid

Something is wrong

  

mastodon_api

  

needs docs

  

needs tests

  

not a bug

  

planned

  

pleroma_api

  

privacy

  

question

More information is needed

  

static_fe

  

triage

  

wontfix

This won't be fixed

No labels

approved, awaiting change

bug

configuration

documentation

duplicate

enhancement

extremely low priority

feature request

Fix it yourself

help wanted

invalid

mastodon_api

needs docs

needs tests

not a bug

planned

pleroma_api

privacy

question

static_fe

triage

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

3 participants

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: AkkomaGang/akkoma#471

No description provided.