2014-01-19 14:42:02 +00:00
|
|
|
/*
|
|
|
|
This file is part of cpp-ethereum.
|
|
|
|
|
|
|
|
cpp-ethereum is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU General Public License as published by
|
2014-02-06 18:53:46 +00:00
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
2014-01-19 14:42:02 +00:00
|
|
|
(at your option) any later version.
|
|
|
|
|
2014-02-16 10:20:55 +00:00
|
|
|
cpp-ethereum is distributed in the hope that it will be useful,
|
2014-01-19 14:42:02 +00:00
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
2014-02-16 10:41:15 +00:00
|
|
|
along with cpp-ethereum. If not, see <http://www.gnu.org/licenses/>.
|
2014-01-19 14:42:02 +00:00
|
|
|
*/
|
|
|
|
/** @file crypto.cpp
|
|
|
|
* @author Gav Wood <i@gavwood.com>
|
|
|
|
* @date 2014
|
|
|
|
* Crypto test functions.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <random>
|
2014-04-23 14:08:11 +00:00
|
|
|
#include <secp256k1/secp256k1.h>
|
2014-09-05 16:24:29 +00:00
|
|
|
#include <libdevcore/Common.h>
|
|
|
|
#include <libdevcore/RLP.h>
|
|
|
|
#include <libdevcore/Log.h>
|
2014-04-23 14:08:11 +00:00
|
|
|
#include <libethereum/Transaction.h>
|
2014-04-19 17:53:48 +00:00
|
|
|
#include <boost/test/unit_test.hpp>
|
2014-10-18 03:11:36 +00:00
|
|
|
#include <libdevcrypto/EC.h>
|
2014-10-25 16:23:19 +00:00
|
|
|
#include <libdevcrypto/SHA3MAC.h>
|
2014-10-14 17:30:20 +00:00
|
|
|
#include "TestHelperCrypto.h"
|
2014-04-19 17:53:48 +00:00
|
|
|
|
2014-01-19 14:42:02 +00:00
|
|
|
using namespace std;
|
2014-09-05 15:09:58 +00:00
|
|
|
using namespace dev;
|
2014-10-18 03:11:36 +00:00
|
|
|
using namespace dev::crypto;
|
|
|
|
using namespace CryptoPP;
|
2014-01-19 14:42:02 +00:00
|
|
|
|
2014-10-18 03:11:36 +00:00
|
|
|
BOOST_AUTO_TEST_SUITE(devcrypto)
|
|
|
|
|
2014-10-23 17:19:02 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(common_encrypt_decrypt)
|
2014-10-23 17:06:31 +00:00
|
|
|
{
|
|
|
|
string message("Now is the time for all good persons to come to the aide of humanity.");
|
|
|
|
bytes m = asBytes(message);
|
|
|
|
bytesConstRef bcr(&m);
|
|
|
|
|
2014-10-23 20:12:47 +00:00
|
|
|
KeyPair k = KeyPair::create();
|
2014-10-23 17:06:31 +00:00
|
|
|
bytes cipher;
|
|
|
|
encrypt(k.pub(), bcr, cipher);
|
2014-10-27 03:17:03 +00:00
|
|
|
BOOST_REQUIRE(cipher != asBytes(message) && cipher.size() > 0);
|
2014-10-23 17:06:31 +00:00
|
|
|
|
|
|
|
bytes plain;
|
|
|
|
decrypt(k.sec(), bytesConstRef(&cipher), plain);
|
|
|
|
|
2014-10-27 03:17:03 +00:00
|
|
|
BOOST_REQUIRE(asString(plain) == message);
|
|
|
|
BOOST_REQUIRE(plain == asBytes(message));
|
2014-10-23 17:06:31 +00:00
|
|
|
}
|
|
|
|
|
2014-10-23 03:04:25 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_vs_secp256k1)
|
|
|
|
{
|
2014-10-25 16:23:19 +00:00
|
|
|
ECIES<ECP>::Decryptor d(pp::PRNG, pp::secp256k1Curve);
|
2014-10-23 03:04:25 +00:00
|
|
|
ECIES<ECP>::Encryptor e(d.GetKey());
|
|
|
|
|
|
|
|
Secret s;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPrivateKey(d.GetKey(), s);
|
2014-10-23 03:04:25 +00:00
|
|
|
|
|
|
|
Public p;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPublicKey(e.GetKey(), p);
|
2014-10-23 03:04:25 +00:00
|
|
|
|
2014-10-27 03:17:03 +00:00
|
|
|
BOOST_REQUIRE(dev::toAddress(s) == right160(dev::sha3(p.ref())));
|
2014-10-23 03:04:25 +00:00
|
|
|
|
|
|
|
Secret previous = s;
|
|
|
|
for (auto i = 0; i < 30; i++)
|
|
|
|
{
|
2014-10-25 16:23:19 +00:00
|
|
|
ECIES<ECP>::Decryptor d(pp::PRNG, pp::secp256k1Curve);
|
2014-10-23 03:04:25 +00:00
|
|
|
ECIES<ECP>::Encryptor e(d.GetKey());
|
|
|
|
|
|
|
|
Secret s;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPrivateKey(d.GetKey(), s);
|
2014-10-27 03:17:03 +00:00
|
|
|
BOOST_REQUIRE(s != previous);
|
2014-10-23 03:04:25 +00:00
|
|
|
|
|
|
|
Public p;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPublicKey(e.GetKey(), p);
|
2014-10-23 14:38:50 +00:00
|
|
|
|
2014-10-27 03:17:03 +00:00
|
|
|
BOOST_REQUIRE(dev::toAddress(s) == right160(dev::sha3(p.ref())));
|
2014-10-23 03:04:25 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2014-10-25 16:23:19 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_ecdsa_sipaseckp256k1)
|
2014-10-23 00:40:02 +00:00
|
|
|
{
|
2014-10-27 03:17:03 +00:00
|
|
|
// cryptopp integer encoding
|
|
|
|
Integer nHex("f2ee15ea639b73fa3db9b34a245bdfa015c260c598b211bf05a1ecc4b3e3b4f2H");
|
|
|
|
Integer nB(fromHex("f2ee15ea639b73fa3db9b34a245bdfa015c260c598b211bf05a1ecc4b3e3b4f2").data(), 32);
|
|
|
|
BOOST_REQUIRE(nHex == nB);
|
2014-10-23 14:59:01 +00:00
|
|
|
|
2014-10-27 03:17:03 +00:00
|
|
|
bytes sbytes(fromHex("0x01"));
|
|
|
|
Secret secret(sha3(sbytes)); // 5fe7f977e71dba2ea1a68e21057beebb9be2ac30c6410aa38d4f3fbe41dcffd2
|
|
|
|
KeyPair key(secret);
|
|
|
|
|
|
|
|
bytes m(fromHex("0x02"));
|
|
|
|
h256 hm(sha3(m)); // f2ee15ea639b73fa3db9b34a245bdfa015c260c598b211bf05a1ecc4b3e3b4f2
|
|
|
|
Integer hInt("f2ee15ea639b73fa3db9b34a245bdfa015c260c598b211bf05a1ecc4b3e3b4f2H"); // 32b msg hash
|
|
|
|
h256 k(hm ^ key.sec());
|
|
|
|
Integer kInt(k.asBytes().data(), 32);
|
|
|
|
|
|
|
|
// raw sign w/cryptopp (doesn't pass through cryptopp hash filter)
|
|
|
|
ECDSA<ECP, SHA3_256>::Signer signer;
|
|
|
|
pp::initializeSigner(key.sec(), signer);
|
|
|
|
Integer r, s;
|
|
|
|
signer.RawSign(kInt, hInt, r, s);
|
|
|
|
cout << "cryptopp-raw r, s: " << endl << r << endl << s << endl;
|
|
|
|
|
|
|
|
// verify cryptopp raw-signature w/cryptopp
|
2014-10-25 16:23:19 +00:00
|
|
|
ECDSA<ECP, SHA3_256>::Verifier verifier;
|
2014-10-27 03:17:03 +00:00
|
|
|
pp::initializeVerifier(key.pub(), verifier);
|
|
|
|
Signature sigppraw;
|
|
|
|
r.Encode(sigppraw.data(), 32);
|
|
|
|
s.Encode(sigppraw.data()+32, 32);
|
|
|
|
BOOST_REQUIRE(verifier.VerifyMessage(m.data(), m.size(), sigppraw.data(), 64));
|
|
|
|
BOOST_REQUIRE(dev::recover(sigppraw, hm) == key.pub());
|
|
|
|
|
|
|
|
// sign with sec256lib, verify with cryptopp
|
|
|
|
Signature seclibsig(dev::sign(key.sec(), hm));
|
|
|
|
r.Decode(seclibsig.data(), 32);
|
|
|
|
s.Decode(seclibsig.data()+32, 32);
|
|
|
|
cout << "sec256lib r, s: " << endl << r << endl << s << endl;
|
|
|
|
BOOST_REQUIRE(verifier.VerifyMessage(m.data(), m.size(), seclibsig.data(), 64));
|
|
|
|
BOOST_REQUIRE(dev::recover(seclibsig, hm) == key.pub());
|
|
|
|
|
|
|
|
// sign with cryptopp (w/hash filter?), verify with cryptopp
|
|
|
|
bytes sigppb(signer.MaxSignatureLength());
|
|
|
|
size_t ssz = signer.SignMessage(pp::PRNG, m.data(), m.size(), sigppb.data());
|
|
|
|
r.Decode(sigppb.data(), 32);
|
|
|
|
s.Decode(sigppb.data()+32, 32);
|
|
|
|
cout << "cryptopp-signmsg r, s: " << endl << r << endl << s << endl;
|
|
|
|
BOOST_REQUIRE(verifier.VerifyMessage(m.data(), m.size(), sigppb.data(), ssz));
|
|
|
|
|
|
|
|
// this has a 25% of failing
|
|
|
|
Signature sigpp;
|
|
|
|
r.Encode(sigpp.data(), 32);
|
|
|
|
s.Encode(sigpp.data()+32, 32);
|
|
|
|
BOOST_WARN(dev::recover(sigpp, hm) == key.pub());
|
|
|
|
|
|
|
|
// sign with stringsource
|
|
|
|
string sigstr;
|
|
|
|
StringSource ssrc(asString(m), true, new SignerFilter(pp::PRNG, signer, new StringSink(sigstr)));
|
|
|
|
FixedHash<sizeof(Signature)> retsig((byte const*)sigstr.data(), Signature::ConstructFromPointer);
|
|
|
|
BOOST_REQUIRE(verifier.VerifyMessage(m.data(), m.size(), retsig.data(), 64));
|
|
|
|
|
|
|
|
|
|
|
|
// need to serialize signature for secp256k1lib to verify compact sig, then
|
|
|
|
// test if secp256k1lib can verify cryptopp sigs
|
2014-10-23 14:38:50 +00:00
|
|
|
|
2014-10-23 14:59:01 +00:00
|
|
|
|
2014-10-27 03:17:03 +00:00
|
|
|
// byte dersig[70];
|
|
|
|
// DSAConvertSignatureFormat(dersig, 70, DSA_DER, sig.data(), 64, DSA_P1363);
|
|
|
|
//
|
|
|
|
// byte encpub[65] = {0x04};
|
|
|
|
// memcpy(&encpub[1], key.pub().data(), 64);
|
|
|
|
// int r = secp256k1_ecdsa_verify(msg.data(), msg.size(), dersig, 70, encpub, 65);
|
|
|
|
// assert(r);
|
2014-10-23 14:38:50 +00:00
|
|
|
|
2014-10-23 00:40:02 +00:00
|
|
|
}
|
|
|
|
|
2014-10-22 21:59:00 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_public_export_import)
|
|
|
|
{
|
2014-10-25 16:23:19 +00:00
|
|
|
ECIES<ECP>::Decryptor d(pp::PRNG, pp::secp256k1Curve);
|
2014-10-22 21:59:00 +00:00
|
|
|
ECIES<ECP>::Encryptor e(d.GetKey());
|
2014-10-23 14:38:50 +00:00
|
|
|
|
|
|
|
Secret s;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPrivateKey(d.GetKey(), s);
|
2014-10-23 00:40:02 +00:00
|
|
|
Public p;
|
2014-10-25 16:23:19 +00:00
|
|
|
pp::exportPublicKey(e.GetKey(), p);
|
2014-10-23 14:38:50 +00:00
|
|
|
Address addr = right160(dev::sha3(p.ref()));
|
|
|
|
assert(toAddress(s) == addr);
|
|
|
|
|
|
|
|
KeyPair l(s);
|
|
|
|
assert(l.address() == addr);
|
2014-10-22 21:59:00 +00:00
|
|
|
}
|
|
|
|
|
2014-10-23 00:40:02 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(ecies_eckeypair)
|
2014-10-14 17:30:20 +00:00
|
|
|
{
|
2014-10-23 20:12:47 +00:00
|
|
|
KeyPair k = KeyPair::create();
|
2014-10-23 14:38:50 +00:00
|
|
|
|
2014-10-22 20:57:41 +00:00
|
|
|
string message("Now is the time for all good persons to come to the aide of humanity.");
|
|
|
|
string original = message;
|
|
|
|
|
|
|
|
bytes b = asBytes(message);
|
2014-10-23 14:38:50 +00:00
|
|
|
encrypt(k.pub(), b);
|
2014-10-22 20:57:41 +00:00
|
|
|
assert(b != asBytes(original));
|
2014-10-22 21:59:00 +00:00
|
|
|
|
2014-10-23 14:38:50 +00:00
|
|
|
decrypt(k.sec(), b);
|
2014-10-23 00:40:02 +00:00
|
|
|
assert(b == asBytes(original));
|
2014-10-14 17:30:20 +00:00
|
|
|
}
|
|
|
|
|
2014-10-18 03:11:36 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(ecdhe_aes128_ctr_sha3mac)
|
|
|
|
{
|
|
|
|
// New connections require new ECDH keypairs
|
|
|
|
// Every new connection requires a new EC keypair
|
|
|
|
// Every new trust requires a new EC keypair
|
|
|
|
// All connections should share seed for PRF (or PRNG) for nonces
|
2014-10-22 13:57:52 +00:00
|
|
|
|
|
|
|
|
2014-10-18 03:11:36 +00:00
|
|
|
}
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_ecies_message)
|
|
|
|
{
|
|
|
|
cnote << "Testing cryptopp_ecies_message...";
|
|
|
|
|
2014-10-22 20:57:41 +00:00
|
|
|
string const message("Now is the time for all good persons to come to the aide of humanity.");
|
2014-10-14 17:30:20 +00:00
|
|
|
|
2014-10-25 16:23:19 +00:00
|
|
|
ECIES<ECP>::Decryptor localDecryptor(pp::PRNG, pp::secp256k1Curve);
|
2014-10-14 17:30:20 +00:00
|
|
|
SavePrivateKey(localDecryptor.GetPrivateKey());
|
|
|
|
|
|
|
|
ECIES<ECP>::Encryptor localEncryptor(localDecryptor);
|
|
|
|
SavePublicKey(localEncryptor.GetPublicKey());
|
2014-04-19 17:53:48 +00:00
|
|
|
|
2014-10-14 17:30:20 +00:00
|
|
|
ECIES<ECP>::Decryptor futureDecryptor;
|
|
|
|
LoadPrivateKey(futureDecryptor.AccessPrivateKey());
|
2014-10-25 16:23:19 +00:00
|
|
|
futureDecryptor.GetPrivateKey().ThrowIfInvalid(pp::PRNG, 3);
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
ECIES<ECP>::Encryptor futureEncryptor;
|
|
|
|
LoadPublicKey(futureEncryptor.AccessPublicKey());
|
2014-10-25 16:23:19 +00:00
|
|
|
futureEncryptor.GetPublicKey().ThrowIfInvalid(pp::PRNG, 3);
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
// encrypt/decrypt with local
|
|
|
|
string cipherLocal;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss1 (message, true, new PK_EncryptorFilter(pp::PRNG, localEncryptor, new StringSink(cipherLocal) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
string plainLocal;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss2 (cipherLocal, true, new PK_DecryptorFilter(pp::PRNG, localDecryptor, new StringSink(plainLocal) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
// encrypt/decrypt with future
|
|
|
|
string cipherFuture;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss3 (message, true, new PK_EncryptorFilter(pp::PRNG, futureEncryptor, new StringSink(cipherFuture) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
string plainFuture;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss4 (cipherFuture, true, new PK_DecryptorFilter(pp::PRNG, futureDecryptor, new StringSink(plainFuture) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
// decrypt local w/future
|
|
|
|
string plainFutureFromLocal;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss5 (cipherLocal, true, new PK_DecryptorFilter(pp::PRNG, futureDecryptor, new StringSink(plainFutureFromLocal) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
// decrypt future w/local
|
|
|
|
string plainLocalFromFuture;
|
2014-10-25 16:23:19 +00:00
|
|
|
StringSource ss6 (cipherFuture, true, new PK_DecryptorFilter(pp::PRNG, localDecryptor, new StringSink(plainLocalFromFuture) ) );
|
2014-10-14 17:30:20 +00:00
|
|
|
|
|
|
|
|
|
|
|
assert(plainLocal == message);
|
|
|
|
assert(plainFuture == plainLocal);
|
|
|
|
assert(plainFutureFromLocal == plainLocal);
|
|
|
|
assert(plainLocalFromFuture == plainLocal);
|
|
|
|
}
|
|
|
|
|
2014-10-22 13:57:52 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_aes128_ctr)
|
|
|
|
{
|
|
|
|
const int aesKeyLen = 16;
|
|
|
|
assert(sizeof(char) == sizeof(byte));
|
|
|
|
|
|
|
|
// generate test key
|
|
|
|
AutoSeededRandomPool rng;
|
|
|
|
SecByteBlock key(0x00, aesKeyLen);
|
|
|
|
rng.GenerateBlock(key, key.size());
|
|
|
|
|
|
|
|
// cryptopp uses IV as nonce/counter which is same as using nonce w/0 ctr
|
2014-10-23 19:59:05 +00:00
|
|
|
byte ctr[AES::BLOCKSIZE];
|
|
|
|
rng.GenerateBlock(ctr, sizeof(ctr));
|
2014-10-22 13:57:52 +00:00
|
|
|
|
2014-10-22 20:57:41 +00:00
|
|
|
string text = "Now is the time for all good persons to come to the aide of humanity.";
|
2014-10-22 13:57:52 +00:00
|
|
|
// c++11 ftw
|
|
|
|
unsigned char const* in = (unsigned char*)&text[0];
|
|
|
|
unsigned char* out = (unsigned char*)&text[0];
|
|
|
|
string original = text;
|
|
|
|
|
|
|
|
string cipherCopy;
|
|
|
|
try
|
|
|
|
{
|
2014-10-23 19:59:05 +00:00
|
|
|
CTR_Mode<AES>::Encryption e;
|
|
|
|
e.SetKeyWithIV(key, key.size(), ctr);
|
2014-10-22 13:57:52 +00:00
|
|
|
e.ProcessData(out, in, text.size());
|
2014-10-23 19:59:05 +00:00
|
|
|
assert(text != original);
|
2014-10-22 13:57:52 +00:00
|
|
|
cipherCopy = text;
|
|
|
|
}
|
2014-10-23 19:59:05 +00:00
|
|
|
catch(CryptoPP::Exception& e)
|
2014-10-22 13:57:52 +00:00
|
|
|
{
|
|
|
|
cerr << e.what() << endl;
|
|
|
|
}
|
|
|
|
|
|
|
|
try
|
|
|
|
{
|
|
|
|
CTR_Mode< AES >::Decryption d;
|
2014-10-23 19:59:05 +00:00
|
|
|
d.SetKeyWithIV(key, key.size(), ctr);
|
2014-10-22 13:57:52 +00:00
|
|
|
d.ProcessData(out, in, text.size());
|
2014-10-23 19:59:05 +00:00
|
|
|
assert(text == original);
|
2014-10-22 13:57:52 +00:00
|
|
|
}
|
2014-10-23 19:59:05 +00:00
|
|
|
catch(CryptoPP::Exception& e)
|
2014-10-22 13:57:52 +00:00
|
|
|
{
|
|
|
|
cerr << e.what() << endl;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// reencrypt ciphertext...
|
|
|
|
try
|
|
|
|
{
|
2014-10-23 19:59:05 +00:00
|
|
|
assert(cipherCopy != text);
|
2014-10-22 13:57:52 +00:00
|
|
|
in = (unsigned char*)&cipherCopy[0];
|
|
|
|
out = (unsigned char*)&cipherCopy[0];
|
|
|
|
|
2014-10-23 19:59:05 +00:00
|
|
|
CTR_Mode<AES>::Encryption e;
|
|
|
|
e.SetKeyWithIV(key, key.size(), ctr);
|
2014-10-22 13:57:52 +00:00
|
|
|
e.ProcessData(out, in, text.size());
|
|
|
|
|
|
|
|
// yep, ctr mode.
|
2014-10-23 19:59:05 +00:00
|
|
|
assert(cipherCopy == original);
|
2014-10-22 13:57:52 +00:00
|
|
|
}
|
2014-10-23 19:59:05 +00:00
|
|
|
catch(CryptoPP::Exception& e)
|
2014-10-22 13:57:52 +00:00
|
|
|
{
|
|
|
|
cerr << e.what() << endl;
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
2014-10-15 09:58:27 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(cryptopp_aes128_cbc)
|
|
|
|
{
|
|
|
|
const int aesKeyLen = 16;
|
|
|
|
assert(sizeof(char) == sizeof(byte));
|
|
|
|
|
|
|
|
AutoSeededRandomPool rng;
|
|
|
|
SecByteBlock key(0x00, aesKeyLen);
|
|
|
|
rng.GenerateBlock(key, key.size());
|
|
|
|
|
|
|
|
// Generate random IV
|
|
|
|
byte iv[AES::BLOCKSIZE];
|
|
|
|
rng.GenerateBlock(iv, AES::BLOCKSIZE);
|
|
|
|
|
|
|
|
string string128("AAAAAAAAAAAAAAAA");
|
|
|
|
string plainOriginal = string128;
|
|
|
|
|
|
|
|
CryptoPP::CBC_Mode<Rijndael>::Encryption cbcEncryption(key, key.size(), iv);
|
|
|
|
cbcEncryption.ProcessData((byte*)&string128[0], (byte*)&string128[0], string128.size());
|
|
|
|
assert(string128 != plainOriginal);
|
|
|
|
|
|
|
|
CBC_Mode<Rijndael>::Decryption cbcDecryption(key, key.size(), iv);
|
|
|
|
cbcDecryption.ProcessData((byte*)&string128[0], (byte*)&string128[0], string128.size());
|
|
|
|
assert(plainOriginal == string128);
|
|
|
|
|
|
|
|
|
|
|
|
// plaintext whose size isn't divisible by block size must use stream filter for padding
|
|
|
|
string string192("AAAAAAAAAAAAAAAABBBBBBBB");
|
|
|
|
plainOriginal = string192;
|
|
|
|
|
|
|
|
string cipher;
|
|
|
|
StreamTransformationFilter* aesStream = new StreamTransformationFilter(cbcEncryption, new StringSink(cipher));
|
|
|
|
StringSource source(string192, true, aesStream);
|
|
|
|
assert(cipher.size() == 32);
|
|
|
|
|
|
|
|
cbcDecryption.ProcessData((byte*)&cipher[0], (byte*)&string192[0], cipher.size());
|
|
|
|
assert(string192 == plainOriginal);
|
|
|
|
}
|
|
|
|
|
2014-10-14 17:30:20 +00:00
|
|
|
BOOST_AUTO_TEST_CASE(eth_keypairs)
|
2014-04-19 17:53:48 +00:00
|
|
|
{
|
|
|
|
cnote << "Testing Crypto...";
|
|
|
|
secp256k1_start();
|
|
|
|
|
|
|
|
KeyPair p(Secret(fromHex("3ecb44df2159c26e0f995712d4f39b6f6e499b40749b1cf1246c37f9516cb6a4")));
|
|
|
|
BOOST_REQUIRE(p.pub() == Public(fromHex("97466f2b32bc3bb76d4741ae51cd1d8578b48d3f1e68da206d47321aec267ce78549b514e4453d74ef11b0cd5e4e4c364effddac8b51bcfc8de80682f952896f")));
|
|
|
|
BOOST_REQUIRE(p.address() == Address(fromHex("8a40bfaa73256b60764c1bf40675a99083efb075")));
|
|
|
|
{
|
2014-10-14 17:30:20 +00:00
|
|
|
eth::Transaction t;
|
2014-04-19 17:53:48 +00:00
|
|
|
t.nonce = 0;
|
|
|
|
t.receiveAddress = h160(fromHex("944400f4b88ac9589a0f17ed4671da26bddb668b"));
|
|
|
|
t.value = 1000;
|
2014-10-03 13:53:04 +00:00
|
|
|
auto rlp = t.rlp(false);
|
|
|
|
cnote << RLP(rlp);
|
|
|
|
cnote << toHex(rlp);
|
2014-04-19 17:53:48 +00:00
|
|
|
cnote << t.sha3(false);
|
|
|
|
t.sign(p.secret());
|
2014-10-03 13:53:04 +00:00
|
|
|
rlp = t.rlp(true);
|
|
|
|
cnote << RLP(rlp);
|
|
|
|
cnote << toHex(rlp);
|
2014-04-19 17:53:48 +00:00
|
|
|
cnote << t.sha3(true);
|
|
|
|
BOOST_REQUIRE(t.sender() == p.address());
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2014-01-19 14:42:02 +00:00
|
|
|
int cryptoTest()
|
|
|
|
{
|
2014-02-28 12:55:30 +00:00
|
|
|
cnote << "Testing Crypto...";
|
2014-02-11 17:43:37 +00:00
|
|
|
secp256k1_start();
|
|
|
|
|
2014-03-04 17:46:26 +00:00
|
|
|
KeyPair p(Secret(fromHex("3ecb44df2159c26e0f995712d4f39b6f6e499b40749b1cf1246c37f9516cb6a4")));
|
|
|
|
assert(p.pub() == Public(fromHex("97466f2b32bc3bb76d4741ae51cd1d8578b48d3f1e68da206d47321aec267ce78549b514e4453d74ef11b0cd5e4e4c364effddac8b51bcfc8de80682f952896f")));
|
|
|
|
assert(p.address() == Address(fromHex("8a40bfaa73256b60764c1bf40675a99083efb075")));
|
2014-02-11 17:43:37 +00:00
|
|
|
{
|
2014-10-14 17:30:20 +00:00
|
|
|
eth::Transaction t;
|
2014-02-11 17:43:37 +00:00
|
|
|
t.nonce = 0;
|
2014-03-04 17:46:26 +00:00
|
|
|
t.receiveAddress = h160(fromHex("944400f4b88ac9589a0f17ed4671da26bddb668b"));
|
2014-02-11 17:43:37 +00:00
|
|
|
t.value = 1000;
|
2014-10-03 13:53:04 +00:00
|
|
|
auto rlp = t.rlp(false);
|
|
|
|
cnote << RLP(rlp);
|
|
|
|
cnote << toHex(rlp);
|
2014-02-11 17:43:37 +00:00
|
|
|
cnote << t.sha3(false);
|
|
|
|
t.sign(p.secret());
|
2014-10-03 13:53:04 +00:00
|
|
|
rlp = t.rlp(true);
|
|
|
|
cnote << RLP(rlp);
|
|
|
|
cnote << toHex(rlp);
|
2014-02-11 17:43:37 +00:00
|
|
|
cnote << t.sha3(true);
|
|
|
|
assert(t.sender() == p.address());
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
#if 0
|
2014-01-19 14:42:02 +00:00
|
|
|
// Test transaction.
|
2014-03-04 17:46:26 +00:00
|
|
|
bytes tx = fromHex("88005401010101010101010101010101010101010101011f0de0b6b3a76400001ce8d4a5100080181c373130a009ba1f10285d4e659568bfcfec85067855c5a3c150100815dad4ef98fd37cf0593828c89db94bd6c64e210a32ef8956eaa81ea9307194996a3b879441f5d");
|
2014-01-19 14:42:02 +00:00
|
|
|
cout << "TX: " << RLP(tx) << endl;
|
|
|
|
|
2014-01-20 14:53:02 +00:00
|
|
|
Transaction t2(tx);
|
2014-01-31 14:10:05 +00:00
|
|
|
cout << "SENDER: " << hex << t2.sender() << dec << endl;
|
2014-01-20 14:53:02 +00:00
|
|
|
|
|
|
|
secp256k1_start();
|
|
|
|
|
|
|
|
Transaction t;
|
|
|
|
t.nonce = 0;
|
|
|
|
t.value = 1; // 1 wei.
|
|
|
|
t.receiveAddress = toAddress(sha3("123"));
|
2014-01-19 14:42:02 +00:00
|
|
|
|
|
|
|
bytes sig64 = toBigEndian(t.vrs.r) + toBigEndian(t.vrs.s);
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "SIG: " << sig64.size() << " " << toHex(sig64) << " " << t.vrs.v << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
|
|
|
|
auto msg = t.rlp(false);
|
|
|
|
cout << "TX w/o SIG: " << RLP(msg) << endl;
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "RLP(TX w/o SIG): " << toHex(t.rlpString(false)) << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
std::string hmsg = sha3(t.rlpString(false), false);
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "SHA256(RLP(TX w/o SIG)): 0x" << toHex(hmsg) << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
|
|
|
|
bytes privkey = sha3Bytes("123");
|
|
|
|
|
|
|
|
{
|
|
|
|
bytes pubkey(65);
|
|
|
|
int pubkeylen = 65;
|
|
|
|
|
|
|
|
int ret = secp256k1_ecdsa_seckey_verify(privkey.data());
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "SEC: " << dec << ret << " " << toHex(privkey) << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
|
|
|
|
ret = secp256k1_ecdsa_pubkey_create(pubkey.data(), &pubkeylen, privkey.data(), 1);
|
|
|
|
pubkey.resize(pubkeylen);
|
2014-02-11 19:13:31 +00:00
|
|
|
int good = secp256k1_ecdsa_pubkey_verify(pubkey.data(), (int)pubkey.size());
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "PUB: " << dec << ret << " " << pubkeylen << " " << toHex(pubkey) << (good ? " GOOD" : " BAD") << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// Test roundtrip...
|
|
|
|
{
|
|
|
|
bytes sig(64);
|
|
|
|
u256 nonce = 0;
|
|
|
|
int v = 0;
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << toHex(hmsg) << endl;
|
|
|
|
cout << toHex(privkey) << endl;
|
2014-01-31 14:10:05 +00:00
|
|
|
cout << hex << nonce << dec << endl;
|
2014-02-11 19:13:31 +00:00
|
|
|
int ret = secp256k1_ecdsa_sign_compact((byte const*)hmsg.data(), (int)hmsg.size(), sig.data(), privkey.data(), (byte const*)&nonce, &v);
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "MYSIG: " << dec << ret << " " << sig.size() << " " << toHex(sig) << " " << v << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
|
|
|
|
bytes pubkey(65);
|
|
|
|
int pubkeylen = 65;
|
2014-02-11 19:13:31 +00:00
|
|
|
ret = secp256k1_ecdsa_recover_compact((byte const*)hmsg.data(), (int)hmsg.size(), (byte const*)sig.data(), pubkey.data(), &pubkeylen, 0, v);
|
2014-01-19 14:42:02 +00:00
|
|
|
pubkey.resize(pubkeylen);
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "MYREC: " << dec << ret << " " << pubkeylen << " " << toHex(pubkey) << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
{
|
|
|
|
bytes pubkey(65);
|
|
|
|
int pubkeylen = 65;
|
2014-02-11 19:13:31 +00:00
|
|
|
int ret = secp256k1_ecdsa_recover_compact((byte const*)hmsg.data(), (int)hmsg.size(), (byte const*)sig64.data(), pubkey.data(), &pubkeylen, 0, (int)t.vrs.v - 27);
|
2014-01-19 14:42:02 +00:00
|
|
|
pubkey.resize(pubkeylen);
|
2014-03-04 17:46:26 +00:00
|
|
|
cout << "RECPUB: " << dec << ret << " " << pubkeylen << " " << toHex(pubkey) << endl;
|
2014-10-16 16:43:48 +00:00
|
|
|
cout << "SENDER: " << hex << toAddress(dev::sha3(bytesConstRef(&pubkey).cropped(1))) << dec << endl;
|
2014-01-19 14:42:02 +00:00
|
|
|
}
|
2014-02-11 17:43:37 +00:00
|
|
|
#endif
|
2014-01-19 14:42:02 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2014-10-14 17:30:20 +00:00
|
|
|
BOOST_AUTO_TEST_SUITE_END()
|
|
|
|
|