feat(rsc): encrypt closure bind values (#897)

## todo

- [x] no-op
- [x] flight encode/decode
- [x] use `serverModuleMap` facebook/react#31300
- [x] fix `Failed to serialize an action for progressive enhancement`
  - ah, it looks like we need base64 string for bind value

```
Failed to serialize an action for progressive enhancement:
Error: File/Blob fields are not yet supported in progressive forms. Will fallback to client hydration.
    at validateAdditionalFormField (/home/hiroshi/code/personal/vite-plugins/node_modules/.pnpm/react-dom@19.1.0_react@19.1.0/node_modules/react-dom/cjs/react-dom-server.edge.development.js:1266:15)
...
```

- [x] encryption key

Author: hi-ogawa

packages/react-server/src/features/server-action/plugin.tsx

@@ -111,6 +111,9 @@ export function vitePluginServerUseServer({
         runtime: (value, name) =>
           `$$ReactServer.registerServerReference(${value}, ${JSON.stringify(serverId)}, ${JSON.stringify(name)})`,
         rejectNonAsyncFunction: true,
+        // TODO: encryption
+        encode: (value) => value,
+        decode: (value) => value,
       });
       if (output.hasChanged()) {
         manager.serverReferenceMap.set(id, serverId);

packages/react-server/src/plugin/index.ts

@@ -558,6 +558,7 @@ function serverDepsConfigPlugin(): Plugin {
             "react/jsx-runtime",
             "react/jsx-dev-runtime",
             "react-server-dom-webpack/server.edge",
+            "react-server-dom-webpack/client.edge",
           ],
         },
       };

packages/rsc/examples/basic/vite.config.ts

@@ -19,6 +19,18 @@ export default defineConfig({
       },
     }),
     Inspect(),
+    {
+      name: "show-encryption-key",
+      enforce: "post",
+      configEnvironment(name, config) {
+        if (name === "rsc") {
+          console.log(
+            "[encryption key]",
+            config.define?.__VITE_RSC_ENCRYPTION_KEY__,
+          );
+        }
+      },
+    },
     {
       // test server restart scenario on e2e
       name: "test-api",

packages/rsc/src/plugin.ts

@@ -22,6 +22,7 @@ import {
 import type { ModuleRunner } from "vite/module-runner";
 import { crawlFrameworkPkgs } from "vitefu";
 import vitePluginRscCore from "./core/plugin";
+import { generateEncryptionKey, toBase64 } from "./utils/encryption-utils";
 import { normalizeViteImportAnalysisUrl } from "./vite-utils";
 
 // state for build orchestration
@@ -123,6 +124,7 @@ export default function vitePluginRsc({
                   "react/jsx-runtime",
                   "react/jsx-dev-runtime",
                   "react-server-dom-webpack/server.edge",
+                  "react-server-dom-webpack/client.edge",
                 ],
                 exclude: [PKG_NAME],
               },
@@ -662,6 +664,19 @@ function vitePluginUseServer(): Plugin[] {
   return [
     {
       name: "rsc:use-server",
+      async configEnvironment(name, config) {
+        if (name === "rsc") {
+          // define default encryption key at build time.
+          // users can override e.g. by { define: { __VITE_RSC_ENCRYPTION_KEY__: 'process.env.MY_KEY' } }
+          config.define ??= {};
+          if (!config.define["__VITE_RSC_ENCRYPTION_KEY__"]) {
+            const encryptionKey = await generateEncryptionKey();
+            config.define["__VITE_RSC_ENCRYPTION_KEY__"] = JSON.stringify(
+              toBase64(encryptionKey),
+            );
+          }
+        }
+      },
       async transform(code, id) {
         if (!code.includes("use server")) return;
         const ast = await parseAstAsync(code);
@@ -675,6 +690,9 @@ function vitePluginUseServer(): Plugin[] {
             runtime: (value, name) =>
               `$$ReactServer.registerServerReference(${value}, ${JSON.stringify(normalizedId)}, ${JSON.stringify(name)})`,
             rejectNonAsyncFunction: true,
+            encode: (value) => `$$ReactServer.encryptActionBoundArgs(${value})`,
+            decode: (value) =>
+              `await $$ReactServer.decryptActionBoundArgs(${value})`,
           });
           if (!output.hasChanged()) return;
           serverReferences[normalizedId] = id;

packages/rsc/src/react/rsc.ts

@@ -1,5 +1,7 @@
 import type { ReactFormState } from "react-dom/client";
 // @ts-ignore
+import * as ReactClient from "react-server-dom-webpack/client.edge";
+// @ts-ignore
 import * as ReactServer from "react-server-dom-webpack/server.edge";
 import { createClientManifest, createServerManifest } from "../core/rsc";
 
@@ -16,6 +18,20 @@ export function renderToReadableStream<T>(
   );
 }
 
+export function createFromReadableStream<T>(
+  stream: ReadableStream<Uint8Array>,
+  options: object = {},
+): Promise<T> {
+  return ReactClient.createFromReadableStream(stream, {
+    serverConsumerManifest: {
+      // https://github.com/facebook/react/pull/31300
+      // https://github.com/vercel/next.js/pull/71527
+      serverModuleMap: createServerManifest(),
+    },
+    ...options,
+  });
+}
+
 export function registerClientReference<T>(
   proxy: T,
   id: string,

packages/rsc/src/rsc.tsx

@@ -2,7 +2,15 @@ import * as assetsManifest from "virtual:vite-rsc/assets-manifest";
 import * as serverReferences from "virtual:vite-rsc/server-references";
 import { setRequireModule } from "./core/rsc";
 import type { AssetsManifest } from "./plugin";
+import { createFromReadableStream, renderToReadableStream } from "./rsc";
 import { withBase } from "./utils/base";
+import {
+  arrayToStream,
+  concatArrayStream,
+  decryptBuffer,
+  encryptBuffer,
+  fromBase64,
+} from "./utils/encryption-utils";
 
 export {
   createClientManifest,
@@ -72,3 +80,43 @@ export async function Resources({
     </>
   );
 }
+
+// based on
+// https://github.com/parcel-bundler/parcel/blob/9855f558a69edde843b1464f39a6010f6b421efe/packages/transformers/js/src/rsc-utils.js
+// https://github.com/vercel/next.js/blob/c10c10daf9e95346c31c24dc49d6b7cda48b5bc8/packages/next/src/server/app-render/encryption.ts
+// https://github.com/vercel/next.js/pull/56377
+
+export async function encryptActionBoundArgs(
+  originalValue: unknown,
+): Promise<string> {
+  const serialized = renderToReadableStream(originalValue);
+  const serializedBuffer = await concatArrayStream(serialized);
+  return encryptBuffer(serializedBuffer, await getEncryptionKey());
+}
+
+export async function decryptActionBoundArgs(
+  encrypted: ReturnType<typeof encryptActionBoundArgs>,
+): Promise<unknown> {
+  const serializedBuffer = await decryptBuffer(
+    await encrypted,
+    await getEncryptionKey(),
+  );
+  const serialized = arrayToStream(new Uint8Array(serializedBuffer));
+  return createFromReadableStream(serialized);
+}
+
+// configurable via `define.__VITE_RSC_ENCRYPTION_KEY__`
+declare let __VITE_RSC_ENCRYPTION_KEY__: string;
+let keyPromise_: Promise<CryptoKey> | undefined;
+
+function getEncryptionKey() {
+  return (keyPromise_ ||= crypto.subtle.importKey(
+    "raw",
+    fromBase64(__VITE_RSC_ENCRYPTION_KEY__),
+    {
+      name: "AES-GCM",
+    },
+    true,
+    ["encrypt", "decrypt"],
+  ));
+}

packages/rsc/src/utils/encryption-utils.ts

@@ -0,0 +1,115 @@
+// based on
+// https://github.com/vercel/next.js/blob/a0993d90c280690e83a2a1bc7c292e1187429fe8/packages/next/src/server/app-render/encryption-utils.ts
+
+function arrayBufferToString(buffer: ArrayBuffer | Uint8Array): string {
+  const bytes = new Uint8Array(buffer);
+  const len = bytes.byteLength;
+  if (len < 65535) {
+    return String.fromCharCode.apply(null, bytes as unknown as number[]);
+  }
+  let binary = "";
+  for (let i = 0; i < len; i++) {
+    binary += String.fromCharCode(bytes[i]!);
+  }
+  return binary;
+}
+
+function stringToUint8Array(binary: string): Uint8Array {
+  const len = binary.length;
+  const arr = new Uint8Array(len);
+  for (let i = 0; i < len; i++) {
+    arr[i] = binary.charCodeAt(i);
+  }
+  return arr;
+}
+
+function concatArray(chunks: Uint8Array[]): Uint8Array {
+  let total = 0;
+  for (const chunk of chunks) {
+    total += chunk.length;
+  }
+  const result = new Uint8Array(total);
+  let offset = 0;
+  for (const chunk of chunks) {
+    result.set(chunk, offset);
+    offset += chunk.length;
+  }
+  return result;
+}
+
+export async function concatArrayStream(
+  stream: ReadableStream<Uint8Array>,
+): Promise<Uint8Array> {
+  const chunks: Uint8Array[] = [];
+  await stream.pipeTo(
+    new WritableStream({
+      write(chunk) {
+        chunks.push(chunk);
+      },
+    }),
+  );
+  return concatArray(chunks);
+}
+
+export function arrayToStream(data: Uint8Array): ReadableStream<Uint8Array> {
+  return new ReadableStream({
+    start(controller) {
+      controller.enqueue(data);
+      controller.close();
+    },
+  });
+}
+
+export function toBase64(buffer: Uint8Array): string {
+  return btoa(arrayBufferToString(buffer));
+}
+
+export function fromBase64(data: string): Uint8Array {
+  return stringToUint8Array(atob(data));
+}
+
+export async function generateEncryptionKey(): Promise<Uint8Array> {
+  const key = await crypto.subtle.generateKey(
+    {
+      name: "AES-GCM",
+      length: 256,
+    },
+    true,
+    ["encrypt", "decrypt"],
+  );
+  const exported = await crypto.subtle.exportKey("raw", key);
+  return new Uint8Array(exported);
+}
+
+export async function encryptBuffer(
+  data: BufferSource,
+  key: CryptoKey,
+): Promise<string> {
+  const iv = crypto.getRandomValues(new Uint8Array(16));
+  const encrypted = await crypto.subtle.encrypt(
+    {
+      name: "AES-GCM",
+      iv,
+    },
+    key,
+    data,
+  );
+  return toBase64(concatArray([iv, new Uint8Array(encrypted)]));
+}
+
+export async function decryptBuffer(
+  encryptedString: string,
+  key: CryptoKey,
+): Promise<ArrayBuffer> {
+  const concatenated = fromBase64(encryptedString);
+  const iv = concatenated.slice(0, 16);
+  const encrypted = concatenated.slice(16);
+  return crypto.subtle.decrypt(
+    {
+      name: "AES-GCM",
+      iv,
+    },
+    key,
+    encrypted,
+  );
+}