github.com/Unheilbar/quorum@v1.0.0/signer/storage/aes_gcm_storage_test.go (about) 1 // Copyright 2018 The go-ethereum Authors 2 // This file is part of the go-ethereum library. 3 // 4 // The go-ethereum library is free software: you can redistribute it and/or modify 5 // it under the terms of the GNU Lesser General Public License as published by 6 // the Free Software Foundation, either version 3 of the License, or 7 // (at your option) any later version. 8 // 9 // The go-ethereum library is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU Lesser General Public License for more details. 13 // 14 // You should have received a copy of the GNU Lesser General Public License 15 // along with the go-ethereum library. If not, see <http://www.gnu.org/licenses/>. 16 17 package storage 18 19 import ( 20 "bytes" 21 "encoding/json" 22 "fmt" 23 "io/ioutil" 24 "testing" 25 26 "github.com/ethereum/go-ethereum/common" 27 "github.com/ethereum/go-ethereum/log" 28 "github.com/mattn/go-colorable" 29 ) 30 31 func TestEncryption(t *testing.T) { 32 // key := []byte("AES256Key-32Characters1234567890") 33 // plaintext := []byte(value) 34 key := []byte("AES256Key-32Characters1234567890") 35 plaintext := []byte("exampleplaintext") 36 37 c, iv, err := encrypt(key, plaintext, nil) 38 if err != nil { 39 t.Fatal(err) 40 } 41 t.Logf("Ciphertext %x, nonce %x\n", c, iv) 42 43 p, err := decrypt(key, iv, c, nil) 44 if err != nil { 45 t.Fatal(err) 46 } 47 t.Logf("Plaintext %v\n", string(p)) 48 if !bytes.Equal(plaintext, p) { 49 t.Errorf("Failed: expected plaintext recovery, got %v expected %v", string(plaintext), string(p)) 50 } 51 } 52 53 func TestFileStorage(t *testing.T) { 54 a := map[string]storedCredential{ 55 "secret": { 56 Iv: common.Hex2Bytes("cdb30036279601aeee60f16b"), 57 CipherText: common.Hex2Bytes("f311ac49859d7260c2c464c28ffac122daf6be801d3cfd3edcbde7e00c9ff74f"), 58 }, 59 "secret2": { 60 Iv: common.Hex2Bytes("afb8a7579bf971db9f8ceeed"), 61 CipherText: common.Hex2Bytes("2df87baf86b5073ef1f03e3cc738de75b511400f5465bb0ddeacf47ae4dc267d"), 62 }, 63 } 64 d, err := ioutil.TempDir("", "eth-encrypted-storage-test") 65 if err != nil { 66 t.Fatal(err) 67 } 68 stored := &AESEncryptedStorage{ 69 filename: fmt.Sprintf("%v/vault.json", d), 70 key: []byte("AES256Key-32Characters1234567890"), 71 } 72 stored.writeEncryptedStorage(a) 73 read := &AESEncryptedStorage{ 74 filename: fmt.Sprintf("%v/vault.json", d), 75 key: []byte("AES256Key-32Characters1234567890"), 76 } 77 creds, err := read.readEncryptedStorage() 78 if err != nil { 79 t.Fatal(err) 80 } 81 for k, v := range a { 82 if v2, exist := creds[k]; !exist { 83 t.Errorf("Missing entry %v", k) 84 } else { 85 if !bytes.Equal(v.CipherText, v2.CipherText) { 86 t.Errorf("Wrong ciphertext, expected %x got %x", v.CipherText, v2.CipherText) 87 } 88 if !bytes.Equal(v.Iv, v2.Iv) { 89 t.Errorf("Wrong iv") 90 } 91 } 92 } 93 } 94 func TestEnd2End(t *testing.T) { 95 log.Root().SetHandler(log.LvlFilterHandler(log.Lvl(3), log.StreamHandler(colorable.NewColorableStderr(), log.TerminalFormat(true)))) 96 97 d, err := ioutil.TempDir("", "eth-encrypted-storage-test") 98 if err != nil { 99 t.Fatal(err) 100 } 101 102 s1 := &AESEncryptedStorage{ 103 filename: fmt.Sprintf("%v/vault.json", d), 104 key: []byte("AES256Key-32Characters1234567890"), 105 } 106 s2 := &AESEncryptedStorage{ 107 filename: fmt.Sprintf("%v/vault.json", d), 108 key: []byte("AES256Key-32Characters1234567890"), 109 } 110 111 s1.Put("bazonk", "foobar") 112 if v, err := s2.Get("bazonk"); v != "foobar" || err != nil { 113 t.Errorf("Expected bazonk->foobar (nil error), got '%v' (%v error)", v, err) 114 } 115 } 116 117 func TestSwappedKeys(t *testing.T) { 118 // It should not be possible to swap the keys/values, so that 119 // K1:V1, K2:V2 can be swapped into K1:V2, K2:V1 120 log.Root().SetHandler(log.LvlFilterHandler(log.Lvl(3), log.StreamHandler(colorable.NewColorableStderr(), log.TerminalFormat(true)))) 121 122 d, err := ioutil.TempDir("", "eth-encrypted-storage-test") 123 if err != nil { 124 t.Fatal(err) 125 } 126 127 s1 := &AESEncryptedStorage{ 128 filename: fmt.Sprintf("%v/vault.json", d), 129 key: []byte("AES256Key-32Characters1234567890"), 130 } 131 s1.Put("k1", "v1") 132 s1.Put("k2", "v2") 133 // Now make a modified copy 134 135 creds := make(map[string]storedCredential) 136 raw, err := ioutil.ReadFile(s1.filename) 137 if err != nil { 138 t.Fatal(err) 139 } 140 if err = json.Unmarshal(raw, &creds); err != nil { 141 t.Fatal(err) 142 } 143 swap := func() { 144 // Turn it into K1:V2, K2:V2 145 v1, v2 := creds["k1"], creds["k2"] 146 creds["k2"], creds["k1"] = v1, v2 147 raw, err = json.Marshal(creds) 148 if err != nil { 149 t.Fatal(err) 150 } 151 if err = ioutil.WriteFile(s1.filename, raw, 0600); err != nil { 152 t.Fatal(err) 153 } 154 } 155 swap() 156 if v, _ := s1.Get("k1"); v != "" { 157 t.Errorf("swapped value should return empty") 158 } 159 swap() 160 if v, _ := s1.Get("k1"); v != "v1" { 161 t.Errorf("double-swapped value should work fine") 162 } 163 }