70e75edf33
- Update the DAPTelemetrySender to provision DAP HPKE keys from prefs and allow Nimbus to update them if a key-rotation is needed. This removes fetching of such keys from the '/hpke_config' endpoints. The DAP preferences are also renamed slightly for consistency. - The DAPTelemetrySender can optionally take an OHTTP configuration which can be used to upload reports. - The PrivateAttributionService component now requires OHTTP for DAP uploads and uses the servers that the Shopping component configures. - Add support to ObliviousHTTP.sys.mjs to allow uploading from ArrayBuffers and also to support the PUT verb. - The DAPTelemetrySender interface is updated to pass extra options in an options bag parameter. Differential Revision: https://phabricator.services.mozilla.com/D220738
76 lines
2.3 KiB
JavaScript
76 lines
2.3 KiB
JavaScript
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this file,
|
|
* You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
let knownConfigs = new Map();
|
|
|
|
export class HPKEConfigManager {
|
|
/**
|
|
* Decodes a base64url-encoded key string.
|
|
* @param {string} aBase64Key
|
|
* @returns {Uint8Array}
|
|
*/
|
|
static decodeKey(aBase64Key) {
|
|
return new Uint8Array(
|
|
ChromeUtils.base64URLDecode(aBase64Key, { padding: "ignore" })
|
|
);
|
|
}
|
|
|
|
static async get(aURL, aOptions = {}) {
|
|
// If we're in a child, forward to the parent.
|
|
let { remoteType } = Services.appinfo;
|
|
if (remoteType) {
|
|
if (remoteType != "privilegedabout") {
|
|
// The remoteTypes definition in the actor definition will enforce
|
|
// that calling getActor fails, this is a more readable error:
|
|
throw new Error(
|
|
"HPKEConfigManager cannot be used outside of the privilegedabout process."
|
|
);
|
|
}
|
|
let actor = ChromeUtils.domProcessChild.getActor("HPKEConfigManager");
|
|
return actor.sendQuery("getconfig", { url: aURL, options: aOptions });
|
|
}
|
|
try {
|
|
let config = await this.#getInternal(aURL, aOptions);
|
|
return new Uint8Array(config);
|
|
} catch (ex) {
|
|
console.error(ex);
|
|
return null;
|
|
}
|
|
}
|
|
|
|
static async #getInternal(aURL, aOptions = {}) {
|
|
let { maxAge = -1 } = aOptions;
|
|
let knownConfig = knownConfigs.get(aURL);
|
|
if (
|
|
knownConfig &&
|
|
(maxAge < 0 || Date.now() - knownConfig.fetchDate < maxAge)
|
|
) {
|
|
return knownConfig.config;
|
|
}
|
|
return this.#fetchAndStore(aURL, aOptions);
|
|
}
|
|
|
|
static async #fetchAndStore(aURL, aOptions = {}) {
|
|
let fetchDate = Date.now();
|
|
let resp = await fetch(aURL, { signal: aOptions.abortSignal });
|
|
if (!resp?.ok) {
|
|
throw new Error(
|
|
`Fetching HPKE config from ${aURL} failed with error ${resp.status}`
|
|
);
|
|
}
|
|
let config = await resp.blob().then(b => b.arrayBuffer());
|
|
knownConfigs.set(aURL, { config, fetchDate });
|
|
return config;
|
|
}
|
|
}
|
|
|
|
export class HPKEConfigManagerParent extends JSProcessActorParent {
|
|
receiveMessage(msg) {
|
|
if (msg.name == "getconfig") {
|
|
return HPKEConfigManager.get(msg.data.url, msg.data.options);
|
|
}
|
|
return null;
|
|
}
|
|
}
|