lighthouse/crypto/eth2_keystore/tests/eip2335_vectors.rs

//! Test cases taken from:
//!
//! https://eips.ethereum.org/EIPS/eip-2335

#![cfg(test)]
#![cfg(not(debug_assertions))]

use eth2_keystore::{Keystore, Uuid};

const EXPECTED_SECRET: &str = "000000000019d6689c085ae165831e934ff763ae46a2a6c172b3f1b60a8ce26f";
const PASSWORD: &str = "testpassword";

pub fn decode_and_check_sk(json: &str) -> Keystore {
    let keystore = Keystore::from_json_str(json).expect("should decode keystore json");
    let expected_sk = hex::decode(EXPECTED_SECRET).unwrap();
    let keypair = keystore.decrypt_keypair(PASSWORD.as_bytes()).unwrap();
    assert_eq!(keypair.sk.as_bytes().as_ref(), &expected_sk[..]);
    keystore
}

#[test]
fn eip2335_test_vector_scrypt() {
    let vector = r#"
            {
            "crypto": {
                "kdf": {
                    "function": "scrypt",
                    "params": {
                        "dklen": 32,
                        "n": 262144,
                        "p": 1,
                        "r": 8,
                        "salt": "d4e56740f876aef8c010b86a40d5f56745a118d0906a34e69aec8c0db1cb8fa3"
                    },
                    "message": ""
                },
                "checksum": {
                    "function": "sha256",
                    "params": {},
                    "message": "149aafa27b041f3523c53d7acba1905fa6b1c90f9fef137568101f44b531a3cb"
                },
                "cipher": {
                    "function": "aes-128-ctr",
                    "params": {
                        "iv": "264daa3f303d7259501c93d997d84fe6"
                    },
                    "message": "54ecc8863c0550351eee5720f3be6a5d4a016025aa91cd6436cfec938d6a8d30"
                }
            },
            "pubkey": "9612d7a727c9d0a22e185a1c768478dfe919cada9266988cb32359c11f2b7b27f4ae4040902382ae2910c15e2b420d07",
            "uuid": "1d85ae20-35c5-4611-98e8-aa14a633906f",
            "path": "",
            "version": 4
        }
        "#;

    let keystore = decode_and_check_sk(&vector);
    assert_eq!(
        *keystore.uuid(),
        Uuid::parse_str("1d85ae20-35c5-4611-98e8-aa14a633906f").unwrap(),
        "uuid"
    );
    assert_eq!(keystore.path(), "", "path");
}

#[test]
fn eip2335_test_vector_pbkdf() {
    let vector = r#"
            {
            "crypto": {
                "kdf": {
                    "function": "pbkdf2",
                    "params": {
                        "dklen": 32,
                        "c": 262144,
                        "prf": "hmac-sha256",
                        "salt": "d4e56740f876aef8c010b86a40d5f56745a118d0906a34e69aec8c0db1cb8fa3"
                    },
                    "message": ""
                },
                "checksum": {
                    "function": "sha256",
                    "params": {},
                    "message": "18b148af8e52920318084560fd766f9d09587b4915258dec0676cba5b0da09d8"
                },
                "cipher": {
                    "function": "aes-128-ctr",
                    "params": {
                        "iv": "264daa3f303d7259501c93d997d84fe6"
                    },
                    "message": "a9249e0ca7315836356e4c7440361ff22b9fe71e2e2ed34fc1eb03976924ed48"
                }
            },
            "pubkey": "9612d7a727c9d0a22e185a1c768478dfe919cada9266988cb32359c11f2b7b27f4ae4040902382ae2910c15e2b420d07",
            "path": "m/12381/60/0/0",
            "uuid": "64625def-3331-4eea-ab6f-782f3ed16a83",
            "version": 4
        }
        "#;

    let keystore = decode_and_check_sk(&vector);
    assert_eq!(
        *keystore.uuid(),
        Uuid::parse_str("64625def-3331-4eea-ab6f-782f3ed16a83").unwrap(),
        "uuid"
    );
    assert_eq!(keystore.path(), "m/12381/60/0/0", "path");
}
EIP-2335: Keystore (#1071) * Add test to understand flow of key storage * First commit * Committing to save trait stuff * Working naive design * Add keystore struct * Move keystore files into their own module * Add serde (de)serialize_with magic * Add keystore test * Fix tests * Add comments and minor fixes * Pass optional params to `to_keystore` function * Add `path` field to keystore * Add function to read Keystore from file * Add test vectors and fix Version serialization * Checksum params is empty object * Add public key to Keystore * Add function for saving keystore into file * Deleted account_manager main.rs * Move keystore module to validator_client * Add save_keystore method to validator_directory * Add load_keystore function. Minor refactorings * Fixed dependencies * Address some review comments * Add Password newtype; derive Zeroize * Fix test * Move keystore into own crate * Remove padding * Add error enum, zeroize more things * Fix comment * Add keystore builder * Remove keystore stuff from val client * Add more tests, comments * Add more comments, test vectors * Progress on improving JSON validation * More JSON verification * Start moving JSON into own mod * Remove old code * Add more tests, reader/writers * Tidy * Move keystore into own file * Move more logic into keystore file * Tidy * Tidy * Allow for odd-character hex * Add more json missing field checks * Use scrypt by default * Tidy, address comments * Test path and uuid in vectors * Fix comment * Add checks for kdf params * Enforce empty kdf message * Expose json_keystore mod * Split out encrypt/decrypt * Replace some password usage with slice * Expose PlainText struct * Expose consts, remove Password * Expose SALT_SIZE * Move dbg assert statement * Fix dodgy json test * Protect against n == 1 * Return error if n is not power of 2 * Add dklen checks * Add note about panics Co-authored-by: pawan <pawandhananjay@gmail.com> 2020-05-11 07:45:06 +00:00			`//! Test cases taken from:`
			`//!`
			`//! https://eips.ethereum.org/EIPS/eip-2335`

			`#![cfg(test)]`
Switch to ring for hkdf (#1134) * Switch to ring for hkdf * Remove comments * Make some keystore tests release only 2020-05-12 05:48:39 +00:00			`#![cfg(not(debug_assertions))]`
EIP-2335: Keystore (#1071) * Add test to understand flow of key storage * First commit * Committing to save trait stuff * Working naive design * Add keystore struct * Move keystore files into their own module * Add serde (de)serialize_with magic * Add keystore test * Fix tests * Add comments and minor fixes * Pass optional params to `to_keystore` function * Add `path` field to keystore * Add function to read Keystore from file * Add test vectors and fix Version serialization * Checksum params is empty object * Add public key to Keystore * Add function for saving keystore into file * Deleted account_manager main.rs * Move keystore module to validator_client * Add save_keystore method to validator_directory * Add load_keystore function. Minor refactorings * Fixed dependencies * Address some review comments * Add Password newtype; derive Zeroize * Fix test * Move keystore into own crate * Remove padding * Add error enum, zeroize more things * Fix comment * Add keystore builder * Remove keystore stuff from val client * Add more tests, comments * Add more comments, test vectors * Progress on improving JSON validation * More JSON verification * Start moving JSON into own mod * Remove old code * Add more tests, reader/writers * Tidy * Move keystore into own file * Move more logic into keystore file * Tidy * Tidy * Allow for odd-character hex * Add more json missing field checks * Use scrypt by default * Tidy, address comments * Test path and uuid in vectors * Fix comment * Add checks for kdf params * Enforce empty kdf message * Expose json_keystore mod * Split out encrypt/decrypt * Replace some password usage with slice * Expose PlainText struct * Expose consts, remove Password * Expose SALT_SIZE * Move dbg assert statement * Fix dodgy json test * Protect against n == 1 * Return error if n is not power of 2 * Add dklen checks * Add note about panics Co-authored-by: pawan <pawandhananjay@gmail.com> 2020-05-11 07:45:06 +00:00
			`use eth2_keystore::{Keystore, Uuid};`

			`const EXPECTED_SECRET: &str = "000000000019d6689c085ae165831e934ff763ae46a2a6c172b3f1b60a8ce26f";`
			`const PASSWORD: &str = "testpassword";`

			`pub fn decode_and_check_sk(json: &str) -> Keystore {`
			`let keystore = Keystore::from_json_str(json).expect("should decode keystore json");`
			`let expected_sk = hex::decode(EXPECTED_SECRET).unwrap();`
			`let keypair = keystore.decrypt_keypair(PASSWORD.as_bytes()).unwrap();`
Improve bls::SecretKey privacy (#1164) * Improve bls::SecretKey privacy * Add missed file * Remove more methods from bls::SecretKey * Add as_bytes() to SecretKey, remove as_raw * Remove as_raw * Add back as_raw * Address review comments 2020-05-19 01:23:08 +00:00			`assert_eq!(keypair.sk.as_bytes().as_ref(), &expected_sk[..]);`
EIP-2335: Keystore (#1071) * Add test to understand flow of key storage * First commit * Committing to save trait stuff * Working naive design * Add keystore struct * Move keystore files into their own module * Add serde (de)serialize_with magic * Add keystore test * Fix tests * Add comments and minor fixes * Pass optional params to `to_keystore` function * Add `path` field to keystore * Add function to read Keystore from file * Add test vectors and fix Version serialization * Checksum params is empty object * Add public key to Keystore * Add function for saving keystore into file * Deleted account_manager main.rs * Move keystore module to validator_client * Add save_keystore method to validator_directory * Add load_keystore function. Minor refactorings * Fixed dependencies * Address some review comments * Add Password newtype; derive Zeroize * Fix test * Move keystore into own crate * Remove padding * Add error enum, zeroize more things * Fix comment * Add keystore builder * Remove keystore stuff from val client * Add more tests, comments * Add more comments, test vectors * Progress on improving JSON validation * More JSON verification * Start moving JSON into own mod * Remove old code * Add more tests, reader/writers * Tidy * Move keystore into own file * Move more logic into keystore file * Tidy * Tidy * Allow for odd-character hex * Add more json missing field checks * Use scrypt by default * Tidy, address comments * Test path and uuid in vectors * Fix comment * Add checks for kdf params * Enforce empty kdf message * Expose json_keystore mod * Split out encrypt/decrypt * Replace some password usage with slice * Expose PlainText struct * Expose consts, remove Password * Expose SALT_SIZE * Move dbg assert statement * Fix dodgy json test * Protect against n == 1 * Return error if n is not power of 2 * Add dklen checks * Add note about panics Co-authored-by: pawan <pawandhananjay@gmail.com> 2020-05-11 07:45:06 +00:00			`keystore`
			`}`

			`#[test]`
			`fn eip2335_test_vector_scrypt() {`
			`let vector = r#"`
			`{`
			`"crypto": {`
			`"kdf": {`
			`"function": "scrypt",`
			`"params": {`
			`"dklen": 32,`
			`"n": 262144,`
			`"p": 1,`
			`"r": 8,`
			`"salt": "d4e56740f876aef8c010b86a40d5f56745a118d0906a34e69aec8c0db1cb8fa3"`
			`},`
			`"message": ""`
			`},`
			`"checksum": {`
			`"function": "sha256",`
			`"params": {},`
			`"message": "149aafa27b041f3523c53d7acba1905fa6b1c90f9fef137568101f44b531a3cb"`
			`},`
			`"cipher": {`
			`"function": "aes-128-ctr",`
			`"params": {`
			`"iv": "264daa3f303d7259501c93d997d84fe6"`
			`},`
			`"message": "54ecc8863c0550351eee5720f3be6a5d4a016025aa91cd6436cfec938d6a8d30"`
			`}`
			`},`
			`"pubkey": "9612d7a727c9d0a22e185a1c768478dfe919cada9266988cb32359c11f2b7b27f4ae4040902382ae2910c15e2b420d07",`
			`"uuid": "1d85ae20-35c5-4611-98e8-aa14a633906f",`
			`"path": "",`
			`"version": 4`
			`}`
			`"#;`

			`let keystore = decode_and_check_sk(&vector);`
			`assert_eq!(`
			`*keystore.uuid(),`
			`Uuid::parse_str("1d85ae20-35c5-4611-98e8-aa14a633906f").unwrap(),`
			`"uuid"`
			`);`
			`assert_eq!(keystore.path(), "", "path");`
			`}`

			`#[test]`
			`fn eip2335_test_vector_pbkdf() {`
			`let vector = r#"`
			`{`
			`"crypto": {`
			`"kdf": {`
			`"function": "pbkdf2",`
			`"params": {`
			`"dklen": 32,`
			`"c": 262144,`
			`"prf": "hmac-sha256",`
			`"salt": "d4e56740f876aef8c010b86a40d5f56745a118d0906a34e69aec8c0db1cb8fa3"`
			`},`
			`"message": ""`
			`},`
			`"checksum": {`
			`"function": "sha256",`
			`"params": {},`
			`"message": "18b148af8e52920318084560fd766f9d09587b4915258dec0676cba5b0da09d8"`
			`},`
			`"cipher": {`
			`"function": "aes-128-ctr",`
			`"params": {`
			`"iv": "264daa3f303d7259501c93d997d84fe6"`
			`},`
			`"message": "a9249e0ca7315836356e4c7440361ff22b9fe71e2e2ed34fc1eb03976924ed48"`
			`}`
			`},`
			`"pubkey": "9612d7a727c9d0a22e185a1c768478dfe919cada9266988cb32359c11f2b7b27f4ae4040902382ae2910c15e2b420d07",`
			`"path": "m/12381/60/0/0",`
			`"uuid": "64625def-3331-4eea-ab6f-782f3ed16a83",`
			`"version": 4`
			`}`
			`"#;`

			`let keystore = decode_and_check_sk(&vector);`
			`assert_eq!(`
			`*keystore.uuid(),`
			`Uuid::parse_str("64625def-3331-4eea-ab6f-782f3ed16a83").unwrap(),`
			`"uuid"`
			`);`
			`assert_eq!(keystore.path(), "m/12381/60/0/0", "path");`
			`}`