github.com/cryptotooltop/go-ethereum@v0.0.0-20231103184714-151d1922f3e5/p2p/rlpx/rlpx_test.go (about) 1 // Copyright 2020 The go-ethereum Authors 2 // This file is part of the go-ethereum library. 3 // 4 // The go-ethereum library is free software: you can redistribute it and/or modify 5 // it under the terms of the GNU Lesser General Public License as published by 6 // the Free Software Foundation, either version 3 of the License, or 7 // (at your option) any later version. 8 // 9 // The go-ethereum library is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU Lesser General Public License for more details. 13 // 14 // You should have received a copy of the GNU Lesser General Public License 15 // along with the go-ethereum library. If not, see <http://www.gnu.org/licenses/>. 16 17 package rlpx 18 19 import ( 20 "bytes" 21 "crypto/ecdsa" 22 "encoding/hex" 23 "fmt" 24 "io" 25 "math/rand" 26 "net" 27 "reflect" 28 "strings" 29 "testing" 30 31 "github.com/davecgh/go-spew/spew" 32 "github.com/stretchr/testify/assert" 33 34 "github.com/scroll-tech/go-ethereum/crypto" 35 "github.com/scroll-tech/go-ethereum/crypto/ecies" 36 "github.com/scroll-tech/go-ethereum/p2p/simulations/pipes" 37 "github.com/scroll-tech/go-ethereum/rlp" 38 ) 39 40 type message struct { 41 code uint64 42 data []byte 43 err error 44 } 45 46 func TestHandshake(t *testing.T) { 47 p1, p2 := createPeers(t) 48 p1.Close() 49 p2.Close() 50 } 51 52 // This test checks that messages can be sent and received through WriteMsg/ReadMsg. 53 func TestReadWriteMsg(t *testing.T) { 54 peer1, peer2 := createPeers(t) 55 defer peer1.Close() 56 defer peer2.Close() 57 58 testCode := uint64(23) 59 testData := []byte("test") 60 checkMsgReadWrite(t, peer1, peer2, testCode, testData) 61 62 t.Log("enabling snappy") 63 peer1.SetSnappy(true) 64 peer2.SetSnappy(true) 65 checkMsgReadWrite(t, peer1, peer2, testCode, testData) 66 } 67 68 func checkMsgReadWrite(t *testing.T, p1, p2 *Conn, msgCode uint64, msgData []byte) { 69 // Set up the reader. 70 ch := make(chan message, 1) 71 go func() { 72 var msg message 73 msg.code, msg.data, _, msg.err = p1.Read() 74 ch <- msg 75 }() 76 77 // Write the message. 78 _, err := p2.Write(msgCode, msgData) 79 if err != nil { 80 t.Fatal(err) 81 } 82 83 // Check it was received correctly. 84 msg := <-ch 85 assert.Equal(t, msgCode, msg.code, "wrong message code returned from ReadMsg") 86 assert.Equal(t, msgData, msg.data, "wrong message data returned from ReadMsg") 87 } 88 89 func createPeers(t *testing.T) (peer1, peer2 *Conn) { 90 conn1, conn2 := net.Pipe() 91 key1, key2 := newkey(), newkey() 92 peer1 = NewConn(conn1, &key2.PublicKey) // dialer 93 peer2 = NewConn(conn2, nil) // listener 94 doHandshake(t, peer1, peer2, key1, key2) 95 return peer1, peer2 96 } 97 98 func doHandshake(t *testing.T, peer1, peer2 *Conn, key1, key2 *ecdsa.PrivateKey) { 99 keyChan := make(chan *ecdsa.PublicKey, 1) 100 go func() { 101 pubKey, err := peer2.Handshake(key2) 102 if err != nil { 103 t.Errorf("peer2 could not do handshake: %v", err) 104 } 105 keyChan <- pubKey 106 }() 107 108 pubKey2, err := peer1.Handshake(key1) 109 if err != nil { 110 t.Errorf("peer1 could not do handshake: %v", err) 111 } 112 pubKey1 := <-keyChan 113 114 // Confirm the handshake was successful. 115 if !reflect.DeepEqual(pubKey1, &key1.PublicKey) || !reflect.DeepEqual(pubKey2, &key2.PublicKey) { 116 t.Fatal("unsuccessful handshake") 117 } 118 } 119 120 // This test checks the frame data of written messages. 121 func TestFrameReadWrite(t *testing.T) { 122 conn := NewConn(nil, nil) 123 hash := fakeHash([]byte{1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1}) 124 conn.InitWithSecrets(Secrets{ 125 AES: crypto.Keccak256(), 126 MAC: crypto.Keccak256(), 127 IngressMAC: hash, 128 EgressMAC: hash, 129 }) 130 h := conn.session 131 132 golden := unhex(` 133 00828ddae471818bb0bfa6b551d1cb42 134 01010101010101010101010101010101 135 ba628a4ba590cb43f7848f41c4382885 136 01010101010101010101010101010101 137 `) 138 msgCode := uint64(8) 139 msg := []uint{1, 2, 3, 4} 140 msgEnc, _ := rlp.EncodeToBytes(msg) 141 142 // Check writeFrame. The frame that's written should be equal to the test vector. 143 buf := new(bytes.Buffer) 144 if err := h.writeFrame(buf, msgCode, msgEnc); err != nil { 145 t.Fatalf("WriteMsg error: %v", err) 146 } 147 if !bytes.Equal(buf.Bytes(), golden) { 148 t.Fatalf("output mismatch:\n got: %x\n want: %x", buf.Bytes(), golden) 149 } 150 151 // Check readFrame on the test vector. 152 content, err := h.readFrame(bytes.NewReader(golden)) 153 if err != nil { 154 t.Fatalf("ReadMsg error: %v", err) 155 } 156 wantContent := unhex("08C401020304") 157 if !bytes.Equal(content, wantContent) { 158 t.Errorf("frame content mismatch:\ngot %x\nwant %x", content, wantContent) 159 } 160 } 161 162 type fakeHash []byte 163 164 func (fakeHash) Write(p []byte) (int, error) { return len(p), nil } 165 func (fakeHash) Reset() {} 166 func (fakeHash) BlockSize() int { return 0 } 167 func (h fakeHash) Size() int { return len(h) } 168 func (h fakeHash) Sum(b []byte) []byte { return append(b, h...) } 169 170 type handshakeAuthTest struct { 171 input string 172 wantVersion uint 173 wantRest []rlp.RawValue 174 } 175 176 var eip8HandshakeAuthTests = []handshakeAuthTest{ 177 // (Auth₂) EIP-8 encoding 178 { 179 input: ` 180 01b304ab7578555167be8154d5cc456f567d5ba302662433674222360f08d5f1534499d3678b513b 181 0fca474f3a514b18e75683032eb63fccb16c156dc6eb2c0b1593f0d84ac74f6e475f1b8d56116b84 182 9634a8c458705bf83a626ea0384d4d7341aae591fae42ce6bd5c850bfe0b999a694a49bbbaf3ef6c 183 da61110601d3b4c02ab6c30437257a6e0117792631a4b47c1d52fc0f8f89caadeb7d02770bf999cc 184 147d2df3b62e1ffb2c9d8c125a3984865356266bca11ce7d3a688663a51d82defaa8aad69da39ab6 185 d5470e81ec5f2a7a47fb865ff7cca21516f9299a07b1bc63ba56c7a1a892112841ca44b6e0034dee 186 70c9adabc15d76a54f443593fafdc3b27af8059703f88928e199cb122362a4b35f62386da7caad09 187 c001edaeb5f8a06d2b26fb6cb93c52a9fca51853b68193916982358fe1e5369e249875bb8d0d0ec3 188 6f917bc5e1eafd5896d46bd61ff23f1a863a8a8dcd54c7b109b771c8e61ec9c8908c733c0263440e 189 2aa067241aaa433f0bb053c7b31a838504b148f570c0ad62837129e547678c5190341e4f1693956c 190 3bf7678318e2d5b5340c9e488eefea198576344afbdf66db5f51204a6961a63ce072c8926c 191 `, 192 wantVersion: 4, 193 wantRest: []rlp.RawValue{}, 194 }, 195 // (Auth₃) RLPx v4 EIP-8 encoding with version 56, additional list elements 196 { 197 input: ` 198 01b8044c6c312173685d1edd268aa95e1d495474c6959bcdd10067ba4c9013df9e40ff45f5bfd6f7 199 2471f93a91b493f8e00abc4b80f682973de715d77ba3a005a242eb859f9a211d93a347fa64b597bf 200 280a6b88e26299cf263b01b8dfdb712278464fd1c25840b995e84d367d743f66c0e54a586725b7bb 201 f12acca27170ae3283c1073adda4b6d79f27656993aefccf16e0d0409fe07db2dc398a1b7e8ee93b 202 cd181485fd332f381d6a050fba4c7641a5112ac1b0b61168d20f01b479e19adf7fdbfa0905f63352 203 bfc7e23cf3357657455119d879c78d3cf8c8c06375f3f7d4861aa02a122467e069acaf513025ff19 204 6641f6d2810ce493f51bee9c966b15c5043505350392b57645385a18c78f14669cc4d960446c1757 205 1b7c5d725021babbcd786957f3d17089c084907bda22c2b2675b4378b114c601d858802a55345a15 206 116bc61da4193996187ed70d16730e9ae6b3bb8787ebcaea1871d850997ddc08b4f4ea668fbf3740 207 7ac044b55be0908ecb94d4ed172ece66fd31bfdadf2b97a8bc690163ee11f5b575a4b44e36e2bfb2 208 f0fce91676fd64c7773bac6a003f481fddd0bae0a1f31aa27504e2a533af4cef3b623f4791b2cca6 209 d490 210 `, 211 wantVersion: 56, 212 wantRest: []rlp.RawValue{{0x01}, {0x02}, {0xC2, 0x04, 0x05}}, 213 }, 214 } 215 216 type handshakeAckTest struct { 217 input string 218 wantVersion uint 219 wantRest []rlp.RawValue 220 } 221 222 var eip8HandshakeRespTests = []handshakeAckTest{ 223 // (Ack₂) EIP-8 encoding 224 { 225 input: ` 226 01ea0451958701280a56482929d3b0757da8f7fbe5286784beead59d95089c217c9b917788989470 227 b0e330cc6e4fb383c0340ed85fab836ec9fb8a49672712aeabbdfd1e837c1ff4cace34311cd7f4de 228 05d59279e3524ab26ef753a0095637ac88f2b499b9914b5f64e143eae548a1066e14cd2f4bd7f814 229 c4652f11b254f8a2d0191e2f5546fae6055694aed14d906df79ad3b407d94692694e259191cde171 230 ad542fc588fa2b7333313d82a9f887332f1dfc36cea03f831cb9a23fea05b33deb999e85489e645f 231 6aab1872475d488d7bd6c7c120caf28dbfc5d6833888155ed69d34dbdc39c1f299be1057810f34fb 232 e754d021bfca14dc989753d61c413d261934e1a9c67ee060a25eefb54e81a4d14baff922180c395d 233 3f998d70f46f6b58306f969627ae364497e73fc27f6d17ae45a413d322cb8814276be6ddd13b885b 234 201b943213656cde498fa0e9ddc8e0b8f8a53824fbd82254f3e2c17e8eaea009c38b4aa0a3f306e8 235 797db43c25d68e86f262e564086f59a2fc60511c42abfb3057c247a8a8fe4fb3ccbadde17514b7ac 236 8000cdb6a912778426260c47f38919a91f25f4b5ffb455d6aaaf150f7e5529c100ce62d6d92826a7 237 1778d809bdf60232ae21ce8a437eca8223f45ac37f6487452ce626f549b3b5fdee26afd2072e4bc7 238 5833c2464c805246155289f4 239 `, 240 wantVersion: 4, 241 wantRest: []rlp.RawValue{}, 242 }, 243 // (Ack₃) EIP-8 encoding with version 57, additional list elements 244 { 245 input: ` 246 01f004076e58aae772bb101ab1a8e64e01ee96e64857ce82b1113817c6cdd52c09d26f7b90981cd7 247 ae835aeac72e1573b8a0225dd56d157a010846d888dac7464baf53f2ad4e3d584531fa203658fab0 248 3a06c9fd5e35737e417bc28c1cbf5e5dfc666de7090f69c3b29754725f84f75382891c561040ea1d 249 dc0d8f381ed1b9d0d4ad2a0ec021421d847820d6fa0ba66eaf58175f1b235e851c7e2124069fbc20 250 2888ddb3ac4d56bcbd1b9b7eab59e78f2e2d400905050f4a92dec1c4bdf797b3fc9b2f8e84a482f3 251 d800386186712dae00d5c386ec9387a5e9c9a1aca5a573ca91082c7d68421f388e79127a5177d4f8 252 590237364fd348c9611fa39f78dcdceee3f390f07991b7b47e1daa3ebcb6ccc9607811cb17ce51f1 253 c8c2c5098dbdd28fca547b3f58c01a424ac05f869f49c6a34672ea2cbbc558428aa1fe48bbfd6115 254 8b1b735a65d99f21e70dbc020bfdface9f724a0d1fb5895db971cc81aa7608baa0920abb0a565c9c 255 436e2fd13323428296c86385f2384e408a31e104670df0791d93e743a3a5194ee6b076fb6323ca59 256 3011b7348c16cf58f66b9633906ba54a2ee803187344b394f75dd2e663a57b956cb830dd7a908d4f 257 39a2336a61ef9fda549180d4ccde21514d117b6c6fd07a9102b5efe710a32af4eeacae2cb3b1dec0 258 35b9593b48b9d3ca4c13d245d5f04169b0b1 259 `, 260 wantVersion: 57, 261 wantRest: []rlp.RawValue{{0x06}, {0xC2, 0x07, 0x08}, {0x81, 0xFA}}, 262 }, 263 } 264 265 var ( 266 keyA, _ = crypto.HexToECDSA("49a7b37aa6f6645917e7b807e9d1c00d4fa71f18343b0d4122a4d2df64dd6fee") 267 keyB, _ = crypto.HexToECDSA("b71c71a67e1177ad4e901695e1b4b9ee17ae16c6668d313eac2f96dbcda3f291") 268 ) 269 270 func TestHandshakeForwardCompatibility(t *testing.T) { 271 var ( 272 pubA = crypto.FromECDSAPub(&keyA.PublicKey)[1:] 273 pubB = crypto.FromECDSAPub(&keyB.PublicKey)[1:] 274 ephA, _ = crypto.HexToECDSA("869d6ecf5211f1cc60418a13b9d870b22959d0c16f02bec714c960dd2298a32d") 275 ephB, _ = crypto.HexToECDSA("e238eb8e04fee6511ab04c6dd3c89ce097b11f25d584863ac2b6d5b35b1847e4") 276 ephPubA = crypto.FromECDSAPub(&ephA.PublicKey)[1:] 277 ephPubB = crypto.FromECDSAPub(&ephB.PublicKey)[1:] 278 nonceA = unhex("7e968bba13b6c50e2c4cd7f241cc0d64d1ac25c7f5952df231ac6a2bda8ee5d6") 279 nonceB = unhex("559aead08264d5795d3909718cdd05abd49572e84fe55590eef31a88a08fdffd") 280 _, _, _, _ = pubA, pubB, ephPubA, ephPubB 281 authSignature = unhex("299ca6acfd35e3d72d8ba3d1e2b60b5561d5af5218eb5bc182045769eb4226910a301acae3b369fffc4a4899d6b02531e89fd4fe36a2cf0d93607ba470b50f7800") 282 _ = authSignature 283 ) 284 makeAuth := func(test handshakeAuthTest) *authMsgV4 { 285 msg := &authMsgV4{Version: test.wantVersion, Rest: test.wantRest} 286 copy(msg.Signature[:], authSignature) 287 copy(msg.InitiatorPubkey[:], pubA) 288 copy(msg.Nonce[:], nonceA) 289 return msg 290 } 291 makeAck := func(test handshakeAckTest) *authRespV4 { 292 msg := &authRespV4{Version: test.wantVersion, Rest: test.wantRest} 293 copy(msg.RandomPubkey[:], ephPubB) 294 copy(msg.Nonce[:], nonceB) 295 return msg 296 } 297 298 // check auth msg parsing 299 for _, test := range eip8HandshakeAuthTests { 300 var h handshakeState 301 r := bytes.NewReader(unhex(test.input)) 302 msg := new(authMsgV4) 303 ciphertext, err := h.readMsg(msg, keyB, r) 304 if err != nil { 305 t.Errorf("error for input %x:\n %v", unhex(test.input), err) 306 continue 307 } 308 if !bytes.Equal(ciphertext, unhex(test.input)) { 309 t.Errorf("wrong ciphertext for input %x:\n %x", unhex(test.input), ciphertext) 310 } 311 want := makeAuth(test) 312 if !reflect.DeepEqual(msg, want) { 313 t.Errorf("wrong msg for input %x:\ngot %s\nwant %s", unhex(test.input), spew.Sdump(msg), spew.Sdump(want)) 314 } 315 } 316 317 // check auth resp parsing 318 for _, test := range eip8HandshakeRespTests { 319 var h handshakeState 320 input := unhex(test.input) 321 r := bytes.NewReader(input) 322 msg := new(authRespV4) 323 ciphertext, err := h.readMsg(msg, keyA, r) 324 if err != nil { 325 t.Errorf("error for input %x:\n %v", input, err) 326 continue 327 } 328 if !bytes.Equal(ciphertext, input) { 329 t.Errorf("wrong ciphertext for input %x:\n %x", input, err) 330 } 331 want := makeAck(test) 332 if !reflect.DeepEqual(msg, want) { 333 t.Errorf("wrong msg for input %x:\ngot %s\nwant %s", input, spew.Sdump(msg), spew.Sdump(want)) 334 } 335 } 336 337 // check derivation for (Auth₂, Ack₂) on recipient side 338 var ( 339 hs = &handshakeState{ 340 initiator: false, 341 respNonce: nonceB, 342 randomPrivKey: ecies.ImportECDSA(ephB), 343 } 344 authCiphertext = unhex(eip8HandshakeAuthTests[0].input) 345 authRespCiphertext = unhex(eip8HandshakeRespTests[0].input) 346 authMsg = makeAuth(eip8HandshakeAuthTests[0]) 347 wantAES = unhex("80e8632c05fed6fc2a13b0f8d31a3cf645366239170ea067065aba8e28bac487") 348 wantMAC = unhex("2ea74ec5dae199227dff1af715362700e989d889d7a493cb0639691efb8e5f98") 349 wantFooIngressHash = unhex("0c7ec6340062cc46f5e9f1e3cf86f8c8c403c5a0964f5df0ebd34a75ddc86db5") 350 ) 351 if err := hs.handleAuthMsg(authMsg, keyB); err != nil { 352 t.Fatalf("handleAuthMsg: %v", err) 353 } 354 derived, err := hs.secrets(authCiphertext, authRespCiphertext) 355 if err != nil { 356 t.Fatalf("secrets: %v", err) 357 } 358 if !bytes.Equal(derived.AES, wantAES) { 359 t.Errorf("aes-secret mismatch:\ngot %x\nwant %x", derived.AES, wantAES) 360 } 361 if !bytes.Equal(derived.MAC, wantMAC) { 362 t.Errorf("mac-secret mismatch:\ngot %x\nwant %x", derived.MAC, wantMAC) 363 } 364 io.WriteString(derived.IngressMAC, "foo") 365 fooIngressHash := derived.IngressMAC.Sum(nil) 366 if !bytes.Equal(fooIngressHash, wantFooIngressHash) { 367 t.Errorf("ingress-mac('foo') mismatch:\ngot %x\nwant %x", fooIngressHash, wantFooIngressHash) 368 } 369 } 370 371 func BenchmarkHandshakeRead(b *testing.B) { 372 var input = unhex(eip8HandshakeAuthTests[0].input) 373 374 for i := 0; i < b.N; i++ { 375 var ( 376 h handshakeState 377 r = bytes.NewReader(input) 378 msg = new(authMsgV4) 379 ) 380 if _, err := h.readMsg(msg, keyB, r); err != nil { 381 b.Fatal(err) 382 } 383 } 384 } 385 386 func BenchmarkThroughput(b *testing.B) { 387 pipe1, pipe2, err := pipes.TCPPipe() 388 if err != nil { 389 b.Fatal(err) 390 } 391 392 var ( 393 conn1, conn2 = NewConn(pipe1, nil), NewConn(pipe2, &keyA.PublicKey) 394 handshakeDone = make(chan error, 1) 395 msgdata = make([]byte, 1024) 396 rand = rand.New(rand.NewSource(1337)) 397 ) 398 rand.Read(msgdata) 399 400 // Server side. 401 go func() { 402 defer conn1.Close() 403 // Perform handshake. 404 _, err := conn1.Handshake(keyA) 405 handshakeDone <- err 406 if err != nil { 407 return 408 } 409 conn1.SetSnappy(true) 410 // Keep sending messages until connection closed. 411 for { 412 if _, err := conn1.Write(0, msgdata); err != nil { 413 return 414 } 415 } 416 }() 417 418 // Set up client side. 419 defer conn2.Close() 420 if _, err := conn2.Handshake(keyB); err != nil { 421 b.Fatal("client handshake error:", err) 422 } 423 conn2.SetSnappy(true) 424 if err := <-handshakeDone; err != nil { 425 b.Fatal("server hanshake error:", err) 426 } 427 428 // Read N messages. 429 b.SetBytes(int64(len(msgdata))) 430 b.ReportAllocs() 431 for i := 0; i < b.N; i++ { 432 _, _, _, err := conn2.Read() 433 if err != nil { 434 b.Fatal("read error:", err) 435 } 436 } 437 } 438 439 func unhex(str string) []byte { 440 r := strings.NewReplacer("\t", "", " ", "", "\n", "") 441 b, err := hex.DecodeString(r.Replace(str)) 442 if err != nil { 443 panic(fmt.Sprintf("invalid hex string: %q", str)) 444 } 445 return b 446 } 447 448 func newkey() *ecdsa.PrivateKey { 449 key, err := crypto.GenerateKey() 450 if err != nil { 451 panic("couldn't generate key: " + err.Error()) 452 } 453 return key 454 }