mbouaziz
commented
6 months ago I tried to debug it myself and stumbled upon this part of the code in ScriptExecutionContext.h:
// These two methods are used when CryptoKeys are serialized into IndexedDB. As a side effect, it is also
// used for things that utilize the same structure clone algorithm, for example, message passing between
// worker and document.
// For now these will return false. In the future, we will want to implement these similar to how WorkerGlobalScope.cpp does.
// virtual bool wrapCryptoKey(const Vector<uint8_t>& key, Vector<uint8_t>& wrappedKey) = 0;
// virtual bool unwrapCryptoKey(const Vector<uint8_t>& wrappedKey, Vector<uint8_t>& key) = 0;
bool wrapCryptoKey(const Vector<uint8_t>& key, Vector<uint8_t>& wrappedKey) { return false; }which was added in #3637 by @dylan-conway and reviewed by @Jarred-Sumner.
The serialization code looks implemented, in dumpIfTerminal for JSCryptoKey but it calls wrapCryptoKey which always return false and cancels the serialization.
I suspect the goal is to prevent people disclosing keys they wouldn't want to and the code snippet I gave should indeed be rejected. Though my real use case is to pass the key to a worker with postMessage, which seems legit.
What version of Bun is running?
1.0.35+940448d6b
What platform is your computer?
Linux 6.1.0-1029-oem x86_64 x86_64
What steps can reproduce the bug?
In
index.ts:What is the expected behavior?
No errors, as with
nodeWhat do you see instead?
DataCloneError: The object can not be cloned.Additional information
This is blocking passing keys to workers.
according to https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto
Similar issue with Deno: https://github.com/denoland/deno/issues/12734