github.com/yinchengtsinghua/golang-Eos-dpos-Ethereum@v0.0.0-20190121132951-92cc4225ed8e/p2p/rlpx_test.go (about) 1 2 //此源码被清华学神尹成大魔王专业翻译分析并修改 3 //尹成QQ77025077 4 //尹成微信18510341407 5 //尹成所在QQ群721929980 6 //尹成邮箱 yinc13@mails.tsinghua.edu.cn 7 //尹成毕业于清华大学,微软区块链领域全球最有价值专家 8 //https://mvp.microsoft.com/zh-cn/PublicProfile/4033620 9 //版权所有2015 Go Ethereum作者 10 //此文件是Go以太坊库的一部分。 11 // 12 //Go-Ethereum库是免费软件:您可以重新分发它和/或修改 13 //根据GNU发布的较低通用公共许可证的条款 14 //自由软件基金会,或者许可证的第3版,或者 15 //(由您选择)任何更高版本。 16 // 17 //Go以太坊图书馆的发行目的是希望它会有用, 18 //但没有任何保证;甚至没有 19 //适销性或特定用途的适用性。见 20 //GNU较低的通用公共许可证,了解更多详细信息。 21 // 22 //你应该收到一份GNU较低级别的公共许可证副本 23 //以及Go以太坊图书馆。如果没有,请参见<http://www.gnu.org/licenses/>。 24 25 package p2p 26 27 import ( 28 "bytes" 29 "crypto/rand" 30 "errors" 31 "fmt" 32 "io" 33 "io/ioutil" 34 "net" 35 "reflect" 36 "strings" 37 "sync" 38 "testing" 39 "time" 40 41 "github.com/davecgh/go-spew/spew" 42 "github.com/ethereum/go-ethereum/crypto" 43 "github.com/ethereum/go-ethereum/crypto/ecies" 44 "github.com/ethereum/go-ethereum/crypto/sha3" 45 "github.com/ethereum/go-ethereum/p2p/discover" 46 "github.com/ethereum/go-ethereum/p2p/simulations/pipes" 47 "github.com/ethereum/go-ethereum/rlp" 48 ) 49 50 func TestSharedSecret(t *testing.T) { 51 prv0, _ := crypto.GenerateKey() //=ecdsa.generatekey(crypto.s256(),rand.reader) 52 pub0 := &prv0.PublicKey 53 prv1, _ := crypto.GenerateKey() 54 pub1 := &prv1.PublicKey 55 56 ss0, err := ecies.ImportECDSA(prv0).GenerateShared(ecies.ImportECDSAPublic(pub1), sskLen, sskLen) 57 if err != nil { 58 return 59 } 60 ss1, err := ecies.ImportECDSA(prv1).GenerateShared(ecies.ImportECDSAPublic(pub0), sskLen, sskLen) 61 if err != nil { 62 return 63 } 64 t.Logf("Secret:\n%v %x\n%v %x", len(ss0), ss0, len(ss0), ss1) 65 if !bytes.Equal(ss0, ss1) { 66 t.Errorf("dont match :(") 67 } 68 } 69 70 func TestEncHandshake(t *testing.T) { 71 for i := 0; i < 10; i++ { 72 start := time.Now() 73 if err := testEncHandshake(nil); err != nil { 74 t.Fatalf("i=%d %v", i, err) 75 } 76 t.Logf("(without token) %d %v\n", i+1, time.Since(start)) 77 } 78 for i := 0; i < 10; i++ { 79 tok := make([]byte, shaLen) 80 rand.Reader.Read(tok) 81 start := time.Now() 82 if err := testEncHandshake(tok); err != nil { 83 t.Fatalf("i=%d %v", i, err) 84 } 85 t.Logf("(with token) %d %v\n", i+1, time.Since(start)) 86 } 87 } 88 89 func testEncHandshake(token []byte) error { 90 type result struct { 91 side string 92 id discover.NodeID 93 err error 94 } 95 var ( 96 prv0, _ = crypto.GenerateKey() 97 prv1, _ = crypto.GenerateKey() 98 fd0, fd1 = net.Pipe() 99 c0, c1 = newRLPX(fd0).(*rlpx), newRLPX(fd1).(*rlpx) 100 output = make(chan result) 101 ) 102 103 go func() { 104 r := result{side: "initiator"} 105 defer func() { output <- r }() 106 defer fd0.Close() 107 108 dest := &discover.Node{ID: discover.PubkeyID(&prv1.PublicKey)} 109 r.id, r.err = c0.doEncHandshake(prv0, dest) 110 if r.err != nil { 111 return 112 } 113 id1 := discover.PubkeyID(&prv1.PublicKey) 114 if r.id != id1 { 115 r.err = fmt.Errorf("remote ID mismatch: got %v, want: %v", r.id, id1) 116 } 117 }() 118 go func() { 119 r := result{side: "receiver"} 120 defer func() { output <- r }() 121 defer fd1.Close() 122 123 r.id, r.err = c1.doEncHandshake(prv1, nil) 124 if r.err != nil { 125 return 126 } 127 id0 := discover.PubkeyID(&prv0.PublicKey) 128 if r.id != id0 { 129 r.err = fmt.Errorf("remote ID mismatch: got %v, want: %v", r.id, id0) 130 } 131 }() 132 133 //等待两边的结果 134 r1, r2 := <-output, <-output 135 if r1.err != nil { 136 return fmt.Errorf("%s side error: %v", r1.side, r1.err) 137 } 138 if r2.err != nil { 139 return fmt.Errorf("%s side error: %v", r2.side, r2.err) 140 } 141 142 //比较派生机密 143 if !reflect.DeepEqual(c0.rw.egressMAC, c1.rw.ingressMAC) { 144 return fmt.Errorf("egress mac mismatch:\n c0.rw: %#v\n c1.rw: %#v", c0.rw.egressMAC, c1.rw.ingressMAC) 145 } 146 if !reflect.DeepEqual(c0.rw.ingressMAC, c1.rw.egressMAC) { 147 return fmt.Errorf("ingress mac mismatch:\n c0.rw: %#v\n c1.rw: %#v", c0.rw.ingressMAC, c1.rw.egressMAC) 148 } 149 if !reflect.DeepEqual(c0.rw.enc, c1.rw.enc) { 150 return fmt.Errorf("enc cipher mismatch:\n c0.rw: %#v\n c1.rw: %#v", c0.rw.enc, c1.rw.enc) 151 } 152 if !reflect.DeepEqual(c0.rw.dec, c1.rw.dec) { 153 return fmt.Errorf("dec cipher mismatch:\n c0.rw: %#v\n c1.rw: %#v", c0.rw.dec, c1.rw.dec) 154 } 155 return nil 156 } 157 158 func TestProtocolHandshake(t *testing.T) { 159 var ( 160 prv0, _ = crypto.GenerateKey() 161 node0 = &discover.Node{ID: discover.PubkeyID(&prv0.PublicKey), IP: net.IP{1, 2, 3, 4}, TCP: 33} 162 hs0 = &protoHandshake{Version: 3, ID: node0.ID, Caps: []Cap{{"a", 0}, {"b", 2}}} 163 164 prv1, _ = crypto.GenerateKey() 165 node1 = &discover.Node{ID: discover.PubkeyID(&prv1.PublicKey), IP: net.IP{5, 6, 7, 8}, TCP: 44} 166 hs1 = &protoHandshake{Version: 3, ID: node1.ID, Caps: []Cap{{"c", 1}, {"d", 3}}} 167 168 wg sync.WaitGroup 169 ) 170 171 fd0, fd1, err := pipes.TCPPipe() 172 if err != nil { 173 t.Fatal(err) 174 } 175 176 wg.Add(2) 177 go func() { 178 defer wg.Done() 179 defer fd0.Close() 180 rlpx := newRLPX(fd0) 181 remid, err := rlpx.doEncHandshake(prv0, node1) 182 if err != nil { 183 t.Errorf("dial side enc handshake failed: %v", err) 184 return 185 } 186 if remid != node1.ID { 187 t.Errorf("dial side remote id mismatch: got %v, want %v", remid, node1.ID) 188 return 189 } 190 191 phs, err := rlpx.doProtoHandshake(hs0) 192 if err != nil { 193 t.Errorf("dial side proto handshake error: %v", err) 194 return 195 } 196 phs.Rest = nil 197 if !reflect.DeepEqual(phs, hs1) { 198 t.Errorf("dial side proto handshake mismatch:\ngot: %s\nwant: %s\n", spew.Sdump(phs), spew.Sdump(hs1)) 199 return 200 } 201 rlpx.close(DiscQuitting) 202 }() 203 go func() { 204 defer wg.Done() 205 defer fd1.Close() 206 rlpx := newRLPX(fd1) 207 remid, err := rlpx.doEncHandshake(prv1, nil) 208 if err != nil { 209 t.Errorf("listen side enc handshake failed: %v", err) 210 return 211 } 212 if remid != node0.ID { 213 t.Errorf("listen side remote id mismatch: got %v, want %v", remid, node0.ID) 214 return 215 } 216 217 phs, err := rlpx.doProtoHandshake(hs1) 218 if err != nil { 219 t.Errorf("listen side proto handshake error: %v", err) 220 return 221 } 222 phs.Rest = nil 223 if !reflect.DeepEqual(phs, hs0) { 224 t.Errorf("listen side proto handshake mismatch:\ngot: %s\nwant: %s\n", spew.Sdump(phs), spew.Sdump(hs0)) 225 return 226 } 227 228 if err := ExpectMsg(rlpx, discMsg, []DiscReason{DiscQuitting}); err != nil { 229 t.Errorf("error receiving disconnect: %v", err) 230 } 231 }() 232 wg.Wait() 233 } 234 235 func TestProtocolHandshakeErrors(t *testing.T) { 236 our := &protoHandshake{Version: 3, Caps: []Cap{{"foo", 2}, {"bar", 3}}, Name: "quux"} 237 tests := []struct { 238 code uint64 239 msg interface{} 240 err error 241 }{ 242 { 243 code: discMsg, 244 msg: []DiscReason{DiscQuitting}, 245 err: DiscQuitting, 246 }, 247 { 248 code: 0x989898, 249 msg: []byte{1}, 250 err: errors.New("expected handshake, got 989898"), 251 }, 252 { 253 code: handshakeMsg, 254 msg: make([]byte, baseProtocolMaxMsgSize+2), 255 err: errors.New("message too big"), 256 }, 257 { 258 code: handshakeMsg, 259 msg: []byte{1, 2, 3}, 260 err: newPeerError(errInvalidMsg, "(code 0) (size 4) rlp: expected input list for p2p.protoHandshake"), 261 }, 262 { 263 code: handshakeMsg, 264 msg: &protoHandshake{Version: 3}, 265 err: DiscInvalidIdentity, 266 }, 267 } 268 269 for i, test := range tests { 270 p1, p2 := MsgPipe() 271 go Send(p1, test.code, test.msg) 272 _, err := readProtocolHandshake(p2, our) 273 if !reflect.DeepEqual(err, test.err) { 274 t.Errorf("test %d: error mismatch: got %q, want %q", i, err, test.err) 275 } 276 } 277 } 278 279 func TestRLPXFrameFake(t *testing.T) { 280 buf := new(bytes.Buffer) 281 hash := fakeHash([]byte{1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1}) 282 rw := newRLPXFrameRW(buf, secrets{ 283 AES: crypto.Keccak256(), 284 MAC: crypto.Keccak256(), 285 IngressMAC: hash, 286 EgressMAC: hash, 287 }) 288 289 golden := unhex(` 290 00828ddae471818bb0bfa6b551d1cb42 291 01010101010101010101010101010101 292 ba628a4ba590cb43f7848f41c4382885 293 01010101010101010101010101010101 294 `) 295 296 //检查writemsg。这会将消息放入缓冲区。 297 if err := Send(rw, 8, []uint{1, 2, 3, 4}); err != nil { 298 t.Fatalf("WriteMsg error: %v", err) 299 } 300 written := buf.Bytes() 301 if !bytes.Equal(written, golden) { 302 t.Fatalf("output mismatch:\n got: %x\n want: %x", written, golden) 303 } 304 305 //检查读数。它读取由writemsg编码的消息,其中 306 //相当于上面的黄金信息。 307 msg, err := rw.ReadMsg() 308 if err != nil { 309 t.Fatalf("ReadMsg error: %v", err) 310 } 311 if msg.Size != 5 { 312 t.Errorf("msg size mismatch: got %d, want %d", msg.Size, 5) 313 } 314 if msg.Code != 8 { 315 t.Errorf("msg code mismatch: got %d, want %d", msg.Code, 8) 316 } 317 payload, _ := ioutil.ReadAll(msg.Payload) 318 wantPayload := unhex("C401020304") 319 if !bytes.Equal(payload, wantPayload) { 320 t.Errorf("msg payload mismatch:\ngot %x\nwant %x", payload, wantPayload) 321 } 322 } 323 324 type fakeHash []byte 325 326 func (fakeHash) Write(p []byte) (int, error) { return len(p), nil } 327 func (fakeHash) Reset() {} 328 func (fakeHash) BlockSize() int { return 0 } 329 330 func (h fakeHash) Size() int { return len(h) } 331 func (h fakeHash) Sum(b []byte) []byte { return append(b, h...) } 332 333 func TestRLPXFrameRW(t *testing.T) { 334 var ( 335 aesSecret = make([]byte, 16) 336 macSecret = make([]byte, 16) 337 egressMACinit = make([]byte, 32) 338 ingressMACinit = make([]byte, 32) 339 ) 340 for _, s := range [][]byte{aesSecret, macSecret, egressMACinit, ingressMACinit} { 341 rand.Read(s) 342 } 343 conn := new(bytes.Buffer) 344 345 s1 := secrets{ 346 AES: aesSecret, 347 MAC: macSecret, 348 EgressMAC: sha3.NewKeccak256(), 349 IngressMAC: sha3.NewKeccak256(), 350 } 351 s1.EgressMAC.Write(egressMACinit) 352 s1.IngressMAC.Write(ingressMACinit) 353 rw1 := newRLPXFrameRW(conn, s1) 354 355 s2 := secrets{ 356 AES: aesSecret, 357 MAC: macSecret, 358 EgressMAC: sha3.NewKeccak256(), 359 IngressMAC: sha3.NewKeccak256(), 360 } 361 s2.EgressMAC.Write(ingressMACinit) 362 s2.IngressMAC.Write(egressMACinit) 363 rw2 := newRLPXFrameRW(conn, s2) 364 365 //发送一些消息 366 for i := 0; i < 10; i++ { 367 //将消息写入conn缓冲区 368 wmsg := []interface{}{"foo", "bar", strings.Repeat("test", i)} 369 err := Send(rw1, uint64(i), wmsg) 370 if err != nil { 371 t.Fatalf("WriteMsg error (i=%d): %v", i, err) 372 } 373 374 //阅读RW1刚刚写的消息 375 msg, err := rw2.ReadMsg() 376 if err != nil { 377 t.Fatalf("ReadMsg error (i=%d): %v", i, err) 378 } 379 if msg.Code != uint64(i) { 380 t.Fatalf("msg code mismatch: got %d, want %d", msg.Code, i) 381 } 382 payload, _ := ioutil.ReadAll(msg.Payload) 383 wantPayload, _ := rlp.EncodeToBytes(wmsg) 384 if !bytes.Equal(payload, wantPayload) { 385 t.Fatalf("msg payload mismatch:\ngot %x\nwant %x", payload, wantPayload) 386 } 387 } 388 } 389 390 type handshakeAuthTest struct { 391 input string 392 isPlain bool 393 wantVersion uint 394 wantRest []rlp.RawValue 395 } 396 397 var eip8HandshakeAuthTests = []handshakeAuthTest{ 398 //(auth_)rlpx v4纯编码 399 { 400 input: ` 401 048ca79ad18e4b0659fab4853fe5bc58eb83992980f4c9cc147d2aa31532efd29a3d3dc6a3d89eaf 402 913150cfc777ce0ce4af2758bf4810235f6e6ceccfee1acc6b22c005e9e3a49d6448610a58e98744 403 ba3ac0399e82692d67c1f58849050b3024e21a52c9d3b01d871ff5f210817912773e610443a9ef14 404 2e91cdba0bd77b5fdf0769b05671fc35f83d83e4d3b0b000c6b2a1b1bba89e0fc51bf4e460df3105 405 c444f14be226458940d6061c296350937ffd5e3acaceeaaefd3c6f74be8e23e0f45163cc7ebd7622 406 0f0128410fd05250273156d548a414444ae2f7dea4dfca2d43c057adb701a715bf59f6fb66b2d1d2 407 0f2c703f851cbf5ac47396d9ca65b6260bd141ac4d53e2de585a73d1750780db4c9ee4cd4d225173 408 a4592ee77e2bd94d0be3691f3b406f9bba9b591fc63facc016bfa8 409 `, 410 isPlain: true, 411 wantVersion: 4, 412 }, 413 //(auth₂)EIP-8编码 414 { 415 input: ` 416 01b304ab7578555167be8154d5cc456f567d5ba302662433674222360f08d5f1534499d3678b513b 417 0fca474f3a514b18e75683032eb63fccb16c156dc6eb2c0b1593f0d84ac74f6e475f1b8d56116b84 418 9634a8c458705bf83a626ea0384d4d7341aae591fae42ce6bd5c850bfe0b999a694a49bbbaf3ef6c 419 da61110601d3b4c02ab6c30437257a6e0117792631a4b47c1d52fc0f8f89caadeb7d02770bf999cc 420 147d2df3b62e1ffb2c9d8c125a3984865356266bca11ce7d3a688663a51d82defaa8aad69da39ab6 421 d5470e81ec5f2a7a47fb865ff7cca21516f9299a07b1bc63ba56c7a1a892112841ca44b6e0034dee 422 70c9adabc15d76a54f443593fafdc3b27af8059703f88928e199cb122362a4b35f62386da7caad09 423 c001edaeb5f8a06d2b26fb6cb93c52a9fca51853b68193916982358fe1e5369e249875bb8d0d0ec3 424 6f917bc5e1eafd5896d46bd61ff23f1a863a8a8dcd54c7b109b771c8e61ec9c8908c733c0263440e 425 2aa067241aaa433f0bb053c7b31a838504b148f570c0ad62837129e547678c5190341e4f1693956c 426 3bf7678318e2d5b5340c9e488eefea198576344afbdf66db5f51204a6961a63ce072c8926c 427 `, 428 wantVersion: 4, 429 wantRest: []rlp.RawValue{}, 430 }, 431 //(auth_)RLPX v4 EIP-8编码,版本56,附加列表元素 432 { 433 input: ` 434 01b8044c6c312173685d1edd268aa95e1d495474c6959bcdd10067ba4c9013df9e40ff45f5bfd6f7 435 2471f93a91b493f8e00abc4b80f682973de715d77ba3a005a242eb859f9a211d93a347fa64b597bf 436 280a6b88e26299cf263b01b8dfdb712278464fd1c25840b995e84d367d743f66c0e54a586725b7bb 437 f12acca27170ae3283c1073adda4b6d79f27656993aefccf16e0d0409fe07db2dc398a1b7e8ee93b 438 cd181485fd332f381d6a050fba4c7641a5112ac1b0b61168d20f01b479e19adf7fdbfa0905f63352 439 bfc7e23cf3357657455119d879c78d3cf8c8c06375f3f7d4861aa02a122467e069acaf513025ff19 440 6641f6d2810ce493f51bee9c966b15c5043505350392b57645385a18c78f14669cc4d960446c1757 441 1b7c5d725021babbcd786957f3d17089c084907bda22c2b2675b4378b114c601d858802a55345a15 442 116bc61da4193996187ed70d16730e9ae6b3bb8787ebcaea1871d850997ddc08b4f4ea668fbf3740 443 7ac044b55be0908ecb94d4ed172ece66fd31bfdadf2b97a8bc690163ee11f5b575a4b44e36e2bfb2 444 f0fce91676fd64c7773bac6a003f481fddd0bae0a1f31aa27504e2a533af4cef3b623f4791b2cca6 445 d490 446 `, 447 wantVersion: 56, 448 wantRest: []rlp.RawValue{{0x01}, {0x02}, {0xC2, 0x04, 0x05}}, 449 }, 450 } 451 452 type handshakeAckTest struct { 453 input string 454 wantVersion uint 455 wantRest []rlp.RawValue 456 } 457 458 var eip8HandshakeRespTests = []handshakeAckTest{ 459 //(ack_)rlpx v4普通编码 460 { 461 input: ` 462 049f8abcfa9c0dc65b982e98af921bc0ba6e4243169348a236abe9df5f93aa69d99cadddaa387662 463 b0ff2c08e9006d5a11a278b1b3331e5aaabf0a32f01281b6f4ede0e09a2d5f585b26513cb794d963 464 5a57563921c04a9090b4f14ee42be1a5461049af4ea7a7f49bf4c97a352d39c8d02ee4acc416388c 465 1c66cec761d2bc1c72da6ba143477f049c9d2dde846c252c111b904f630ac98e51609b3b1f58168d 466 dca6505b7196532e5f85b259a20c45e1979491683fee108e9660edbf38f3add489ae73e3dda2c71b 467 d1497113d5c755e942d1 468 `, 469 wantVersion: 4, 470 }, 471 //(ACK₂)EIP-8编码 472 { 473 input: ` 474 01ea0451958701280a56482929d3b0757da8f7fbe5286784beead59d95089c217c9b917788989470 475 b0e330cc6e4fb383c0340ed85fab836ec9fb8a49672712aeabbdfd1e837c1ff4cace34311cd7f4de 476 05d59279e3524ab26ef753a0095637ac88f2b499b9914b5f64e143eae548a1066e14cd2f4bd7f814 477 c4652f11b254f8a2d0191e2f5546fae6055694aed14d906df79ad3b407d94692694e259191cde171 478 ad542fc588fa2b7333313d82a9f887332f1dfc36cea03f831cb9a23fea05b33deb999e85489e645f 479 6aab1872475d488d7bd6c7c120caf28dbfc5d6833888155ed69d34dbdc39c1f299be1057810f34fb 480 e754d021bfca14dc989753d61c413d261934e1a9c67ee060a25eefb54e81a4d14baff922180c395d 481 3f998d70f46f6b58306f969627ae364497e73fc27f6d17ae45a413d322cb8814276be6ddd13b885b 482 201b943213656cde498fa0e9ddc8e0b8f8a53824fbd82254f3e2c17e8eaea009c38b4aa0a3f306e8 483 797db43c25d68e86f262e564086f59a2fc60511c42abfb3057c247a8a8fe4fb3ccbadde17514b7ac 484 8000cdb6a912778426260c47f38919a91f25f4b5ffb455d6aaaf150f7e5529c100ce62d6d92826a7 485 1778d809bdf60232ae21ce8a437eca8223f45ac37f6487452ce626f549b3b5fdee26afd2072e4bc7 486 5833c2464c805246155289f4 487 `, 488 wantVersion: 4, 489 wantRest: []rlp.RawValue{}, 490 }, 491 //(ack_)EIP-8编码,57版,附加列表元素 492 { 493 input: ` 494 01f004076e58aae772bb101ab1a8e64e01ee96e64857ce82b1113817c6cdd52c09d26f7b90981cd7 495 ae835aeac72e1573b8a0225dd56d157a010846d888dac7464baf53f2ad4e3d584531fa203658fab0 496 3a06c9fd5e35737e417bc28c1cbf5e5dfc666de7090f69c3b29754725f84f75382891c561040ea1d 497 dc0d8f381ed1b9d0d4ad2a0ec021421d847820d6fa0ba66eaf58175f1b235e851c7e2124069fbc20 498 2888ddb3ac4d56bcbd1b9b7eab59e78f2e2d400905050f4a92dec1c4bdf797b3fc9b2f8e84a482f3 499 d800386186712dae00d5c386ec9387a5e9c9a1aca5a573ca91082c7d68421f388e79127a5177d4f8 500 590237364fd348c9611fa39f78dcdceee3f390f07991b7b47e1daa3ebcb6ccc9607811cb17ce51f1 501 c8c2c5098dbdd28fca547b3f58c01a424ac05f869f49c6a34672ea2cbbc558428aa1fe48bbfd6115 502 8b1b735a65d99f21e70dbc020bfdface9f724a0d1fb5895db971cc81aa7608baa0920abb0a565c9c 503 436e2fd13323428296c86385f2384e408a31e104670df0791d93e743a3a5194ee6b076fb6323ca59 504 3011b7348c16cf58f66b9633906ba54a2ee803187344b394f75dd2e663a57b956cb830dd7a908d4f 505 39a2336a61ef9fda549180d4ccde21514d117b6c6fd07a9102b5efe710a32af4eeacae2cb3b1dec0 506 35b9593b48b9d3ca4c13d245d5f04169b0b1 507 `, 508 wantVersion: 57, 509 wantRest: []rlp.RawValue{{0x06}, {0xC2, 0x07, 0x08}, {0x81, 0xFA}}, 510 }, 511 } 512 513 func TestHandshakeForwardCompatibility(t *testing.T) { 514 var ( 515 keyA, _ = crypto.HexToECDSA("49a7b37aa6f6645917e7b807e9d1c00d4fa71f18343b0d4122a4d2df64dd6fee") 516 keyB, _ = crypto.HexToECDSA("b71c71a67e1177ad4e901695e1b4b9ee17ae16c6668d313eac2f96dbcda3f291") 517 pubA = crypto.FromECDSAPub(&keyA.PublicKey)[1:] 518 pubB = crypto.FromECDSAPub(&keyB.PublicKey)[1:] 519 ephA, _ = crypto.HexToECDSA("869d6ecf5211f1cc60418a13b9d870b22959d0c16f02bec714c960dd2298a32d") 520 ephB, _ = crypto.HexToECDSA("e238eb8e04fee6511ab04c6dd3c89ce097b11f25d584863ac2b6d5b35b1847e4") 521 ephPubA = crypto.FromECDSAPub(&ephA.PublicKey)[1:] 522 ephPubB = crypto.FromECDSAPub(&ephB.PublicKey)[1:] 523 nonceA = unhex("7e968bba13b6c50e2c4cd7f241cc0d64d1ac25c7f5952df231ac6a2bda8ee5d6") 524 nonceB = unhex("559aead08264d5795d3909718cdd05abd49572e84fe55590eef31a88a08fdffd") 525 _, _, _, _ = pubA, pubB, ephPubA, ephPubB 526 authSignature = unhex("299ca6acfd35e3d72d8ba3d1e2b60b5561d5af5218eb5bc182045769eb4226910a301acae3b369fffc4a4899d6b02531e89fd4fe36a2cf0d93607ba470b50f7800") 527 _ = authSignature 528 ) 529 makeAuth := func(test handshakeAuthTest) *authMsgV4 { 530 msg := &authMsgV4{Version: test.wantVersion, Rest: test.wantRest, gotPlain: test.isPlain} 531 copy(msg.Signature[:], authSignature) 532 copy(msg.InitiatorPubkey[:], pubA) 533 copy(msg.Nonce[:], nonceA) 534 return msg 535 } 536 makeAck := func(test handshakeAckTest) *authRespV4 { 537 msg := &authRespV4{Version: test.wantVersion, Rest: test.wantRest} 538 copy(msg.RandomPubkey[:], ephPubB) 539 copy(msg.Nonce[:], nonceB) 540 return msg 541 } 542 543 //检查身份验证消息分析 544 for _, test := range eip8HandshakeAuthTests { 545 r := bytes.NewReader(unhex(test.input)) 546 msg := new(authMsgV4) 547 ciphertext, err := readHandshakeMsg(msg, encAuthMsgLen, keyB, r) 548 if err != nil { 549 t.Errorf("error for input %x:\n %v", unhex(test.input), err) 550 continue 551 } 552 if !bytes.Equal(ciphertext, unhex(test.input)) { 553 t.Errorf("wrong ciphertext for input %x:\n %x", unhex(test.input), ciphertext) 554 } 555 want := makeAuth(test) 556 if !reflect.DeepEqual(msg, want) { 557 t.Errorf("wrong msg for input %x:\ngot %s\nwant %s", unhex(test.input), spew.Sdump(msg), spew.Sdump(want)) 558 } 559 } 560 561 //检查身份验证响应分析 562 for _, test := range eip8HandshakeRespTests { 563 input := unhex(test.input) 564 r := bytes.NewReader(input) 565 msg := new(authRespV4) 566 ciphertext, err := readHandshakeMsg(msg, encAuthRespLen, keyA, r) 567 if err != nil { 568 t.Errorf("error for input %x:\n %v", input, err) 569 continue 570 } 571 if !bytes.Equal(ciphertext, input) { 572 t.Errorf("wrong ciphertext for input %x:\n %x", input, err) 573 } 574 want := makeAck(test) 575 if !reflect.DeepEqual(msg, want) { 576 t.Errorf("wrong msg for input %x:\ngot %s\nwant %s", input, spew.Sdump(msg), spew.Sdump(want)) 577 } 578 } 579 580 //检查收件人端(auth₂,ack₂)的派生 581 var ( 582 hs = &encHandshake{ 583 initiator: false, 584 respNonce: nonceB, 585 randomPrivKey: ecies.ImportECDSA(ephB), 586 } 587 authCiphertext = unhex(eip8HandshakeAuthTests[1].input) 588 authRespCiphertext = unhex(eip8HandshakeRespTests[1].input) 589 authMsg = makeAuth(eip8HandshakeAuthTests[1]) 590 wantAES = unhex("80e8632c05fed6fc2a13b0f8d31a3cf645366239170ea067065aba8e28bac487") 591 wantMAC = unhex("2ea74ec5dae199227dff1af715362700e989d889d7a493cb0639691efb8e5f98") 592 wantFooIngressHash = unhex("0c7ec6340062cc46f5e9f1e3cf86f8c8c403c5a0964f5df0ebd34a75ddc86db5") 593 ) 594 if err := hs.handleAuthMsg(authMsg, keyB); err != nil { 595 t.Fatalf("handleAuthMsg: %v", err) 596 } 597 derived, err := hs.secrets(authCiphertext, authRespCiphertext) 598 if err != nil { 599 t.Fatalf("secrets: %v", err) 600 } 601 if !bytes.Equal(derived.AES, wantAES) { 602 t.Errorf("aes-secret mismatch:\ngot %x\nwant %x", derived.AES, wantAES) 603 } 604 if !bytes.Equal(derived.MAC, wantMAC) { 605 t.Errorf("mac-secret mismatch:\ngot %x\nwant %x", derived.MAC, wantMAC) 606 } 607 io.WriteString(derived.IngressMAC, "foo") 608 fooIngressHash := derived.IngressMAC.Sum(nil) 609 if !bytes.Equal(fooIngressHash, wantFooIngressHash) { 610 t.Errorf("ingress-mac('foo') mismatch:\ngot %x\nwant %x", fooIngressHash, wantFooIngressHash) 611 } 612 }