redesigned the framework to make it less vulnerable to native exceptions.

[radetsky]

Made changes to the code that should catch any exceptions
Updated and moved to different directory previous react-native-example
Written the 'app of 70 tests of react-native-themis' and well tested it on debug, release, and TestFlight modes.
Fixed found issues after running the app

Checklist

• Change is covered by automated tests
• The [coding guidelines] are followed
• Example projects and code samples are up-to-date (in case of API changes)

[Lagovas]

do we need private key here? as I remember and what our docs says - https://docs.cossacklabs.com/themis/crypto-theory/cryptosystems/secure-message/#implementation-details
for verifying we need only public key. So, if it is legacy signature of method, we can leave it but ignore private key and don't validate.

plus we don't use it anywhere below.

[radetsky]

Removed privateKey from verify method. Also removed a public key from the sign method.
Fixed the tests.

[Lagovas]

/Users/rad/Downloads...

is it correct value?

[radetsky]

Nope. I will update '[email protected]' after the package is published.

[ilammy]

194 files changed, 14685 insertions(+), 1554 deletions(-)

Is this representative of React Native changes? 😞

I really think boilerplate should be trimmed down. Looks like we're one step away from checking binaries into the repo, and then compiled examples as well because why not, users might be not experienced enough to compile them.

EDIT: Oh, those are examples moving around. I think this better be done on master instead, since that's where people look for examples.

^{And maybe don't compile them? 🥺}

[ilammy]

Grrr, formatting changes mixed with substantial changes.

(puts on nazi maintainer hat)

Please, use the following action plan:

0. Do not reformat code on maintenance branch. Live with whatever formatting is there.
1. Configure auto-formatter for the code, share the configuration.
2. Reformat everything as a separate PR. That way resulting commit can be easily ignored.
3. Get CI to check auto-formatting in PRs to master from now on.

(takes off nazi maintainer hat)

[radetsky]

Thank you for pointing that out to me. It's just that my eyesight has deteriorated and I became comfortable working with 4 spaces. It seems to me that no one else is working with this particular code now.
Next time I will definitely follow your comments.

[vixentael]

my eyesight has deteriorated and I became comfortable working with 4 spaces.

@radetsky i'm very sorry for your eyesight. however, mixing formatting and real value PRs in one PR is a no go.

we don't mind against changing formatting, but we do mind against mixing formatting changes and real changes in the same PR, and changing formatting in the maintenance branch as a hotfix.

please follow @ilammy recommendations.

[ilammy]

If you're wondering why this check is necessary, Buffer.from('💩💩💩', 'base64') – in typical Node.js & JS fashion – simply skips all characters that it can't recognize.

[radetsky]

I believe if we announced that parameters should be base64 encoded, we have to validate them. Of course, I know about it behavior of Javascipt.

[ilammy]

That comment was for other reviewers, who might not be aware why exactly you have to validate before calling the base64 conversion.

[Lagovas]

does it break backward compatibility? do we know that these methods are used anywhere or by someone?

[radetsky]

A little. Verify method now has only two required parameters. I deleted the middle one - an optional private key. The sign method is compatible.
I think we should describe the changes in our documentation for react-native-themis.
The GitHub search tool returns only 8 code results and all results contain in our repositories.

[ilammy]

does it break backward compatibility?

A little.

No such thing. Either applications are going to break after update, or they will not.

Aren't these methods semi-private? As in, they are an implementation detail of ReactNative Themis, and the users will not be calling them directly, but rather through JS code?

Though, I see JS API being changed as well, so it's a genuine breaking change.

---

Please, don't make breaking changes in patch releases, that's irresponsible.

In fact, better avoid making breaking changes at all until the next major version. Deprecations are okay though.

Or else, be honest, slap a prominent red banner in ReactNative documentation that the package is currently under development, is unstable, anything can be changed at any time, and it will be totally the user's fault if their application stops working after an update.

[radetsky]

Fixed. I returned the middle param privateKey in the public API function. But mark it as unused and optional.

[radetsky]

194 files changed, 14685 insertions(+), 1554 deletions(-)
EDIT: Oh, those are examples moving around. I think this better be done on master instead since that's where people look for examples.
And maybe don't compile them? 🥺

It is only the source code and the assets for two mobile OS of two examples. I checked that twice. No compiled files.

[ilammy]

It is only the source code and the assets for two mobile OS of two examples. I checked that twice. No compiled files.

I'd consider all code-generated crap to be "compiled files", but that could be agreeable, since those files are needed for the examples to build and there doesn't seem to be a way to generate all this stuff in a reproducible manner.

So that's okay.

What's not okay is that all this is mixed with formatting changes and substantial changes. Which makes the PR borderline unreviewable. At the very least, all changes under docs/... should have been made into a separate PR and they have nothing to do with redesigning the framework to make it less vulnerable to native exceptions.

[ilammy]

publicKey64 parameter should be reinstated here to avoid breaking changes.

[radetsky]

done.

[ilammy]

Do optional parameters actually work like that in TypeScript? You can make a parameter in the middle of the list optional? 🤔

[radetsky]

To make it back compatible I had to return the unused privateKey64 parameter to the middle of the list of parameters. But typescript wants to use the required parameter in the function body. So, to omit the error I had to add undersign character. That indicates the parameter is maybe unused in the future.

[ilammy]

Nah, I'm just surprised it allows to put default values in the middle of the list. Usually it's allowed only at the end, as that makes it easy to disambiguate which parameters should be defaulted. However, maybe the compiler is smart enough, since if there is only one optional parameter, it's unambiguous. But I'm not so sure about vanilla JS.

Could you please add a test to ensure that both 2-argument and 3-argument calls keep working?

[ilammy]

Good progress on eliminating exceptions, nevertheless!

[radetsky]

I'll try to remove docs/ changes to make it in a separate PR.

[ilammy]

I'll try to remove docs/ changes to make it in a separate PR.

Your latest commit broke GitHub 😂

You know, with 9-million-loc diff... Just shoot the horse already, put him out of his misery.

(Take useful changes, apply them on a separate branch, throw this one away.)

[vixentael]

as i understand, we are closing this PR in favor of #955