rippled/ValidatorKeys__test_8cpp_source.html

#include <test/jtx/Env.h>


#include <xrpld/app/misc/Manifest.h>

#include <xrpld/app/misc/ValidatorKeys.h>

#include <xrpld/core/Config.h>

#include <xrpld/core/ConfigSections.h>


#include <xrpl/basics/base64.h>

#include <xrpl/beast/unit_test.h>


#include <string>


namespace ripple {

namespace test {


class ValidatorKeys_test : public beast::unit_test::suite

{

    // Used with [validation_seed]

    std::string const seed = "shUwVw52ofnCUX5m7kPTKzJdr4HEH";


    // Used with [validation_token]

    std::string const tokenSecretStr =

        "paQmjZ37pKKPMrgadBLsuf9ab7Y7EUNzh27LQrZqoexpAs31nJi";


    std::vector<std::string> const tokenBlob = {

        "    "

        "eyJ2YWxpZGF0aW9uX3NlY3JldF9rZXkiOiI5ZWQ0NWY4NjYyNDFjYzE4YTI3NDdiNT\n",

        " \tQzODdjMDYyNTkwNzk3MmY0ZTcxOTAyMzFmYWE5Mzc0NTdmYTlkYWY2IiwibWFuaWZl "

        "    \n",

        "\tc3QiOiJKQUFBQUFGeEllMUZ0d21pbXZHdEgyaUNjTUpxQzlnVkZLaWxHZncxL3ZDeE"

        "\n",

        "\t "

        "hYWExwbGMyR25NaEFrRTFhZ3FYeEJ3RHdEYklENk9NU1l1TTBGREFscEFnTms4U0tG\t  "

        "\t\n",

        "bjdNTzJmZGtjd1JRSWhBT25ndTlzQUtxWFlvdUorbDJWMFcrc0FPa1ZCK1pSUzZQU2\n",

        "hsSkFmVXNYZkFpQnNWSkdlc2FhZE9KYy9hQVpva1MxdnltR21WcmxIUEtXWDNZeXd1\n",

        "NmluOEhBU1FLUHVnQkQ2N2tNYVJGR3ZtcEFUSGxHS0pkdkRGbFdQWXk1QXFEZWRGdj\n",

        "VUSmEydzBpMjFlcTNNWXl3TFZKWm5GT3I3QzBrdzJBaVR6U0NqSXpkaXRROD0ifQ==\n"};


    std::string const tokenManifest =

        "JAAAAAFxIe1FtwmimvGtH2iCcMJqC9gVFKilGfw1/vCxHXXLplc2GnMhAkE1agqXxBwD"

        "wDbID6OMSYuM0FDAlpAgNk8SKFn7MO2fdkcwRQIhAOngu9sAKqXYouJ+l2V0W+sAOkVB"

        "+ZRS6PShlJAfUsXfAiBsVJGesaadOJc/aAZokS1vymGmVrlHPKWX3Yywu6in8HASQKPu"

        "gBD67kMaRFGvmpATHlGKJdvDFlWPYy5AqDedFv5TJa2w0i21eq3MYywLVJZnFOr7C0kw"

        "2AiTzSCjIzditQ8=";


    // Manifest does not match private key


    std::vector<std::string> const invalidTokenBlob = {

        "eyJtYW5pZmVzdCI6IkpBQUFBQVZ4SWUyOVVBdzViZFJudHJ1elVkREk4aDNGV1JWZl\n",

        "k3SXVIaUlKQUhJd3MxdzZzM01oQWtsa1VXQWR2RnFRVGRlSEpvS1pNY0hlS0RzOExo\n",

        "b3d3bDlHOEdkVGNJbmFka1l3UkFJZ0h2Q01lQU1aSzlqQnV2aFhlaFRLRzVDQ3BBR1\n",

        "k0bGtvZHRXYW84UGhzR3NDSUREVTA1d1c3bWNiMjlVNkMvTHBpZmgvakZPRGhFR21i\n",

        "NWF6dTJMVHlqL1pjQkpBbitmNGhtQTQ0U0tYbGtTTUFqak1rSWRyR1Rxa21SNjBzVG\n",

        "JaTjZOOUYwdk9UV3VYcUZ6eDFoSGIyL0RqWElVZXhDVGlITEcxTG9UdUp1eXdXbk55\n",

        "RFE9PSIsInZhbGlkYXRpb25fc2VjcmV0X2tleSI6IjkyRDhCNDBGMzYwMTc5MTkwMU\n",

        "MzQTUzMzI3NzBDMkUwMTA4MDI0NTZFOEM2QkI0NEQ0N0FFREQ0NzJGMDQ2RkYifQ==\n"};


public:

    void


    run() override

    {

        // We're only using Env for its Journal.  That Journal gives better

        // coverage in unit tests.

        test::jtx::Env env{

            *this,

            test::jtx::envconfig(),

            nullptr,

            beast::severities::kDisabled};

        beast::Journal journal{env.app().journal("ValidatorKeys_test")};


        // Keys/ID when using [validation_seed]

        SecretKey const seedSecretKey =

            generateSecretKey(KeyType::secp256k1, *parseBase58<Seed>(seed));

        PublicKey const seedPublicKey =

            derivePublicKey(KeyType::secp256k1, seedSecretKey);

        NodeID const seedNodeID = calcNodeID(seedPublicKey);


        // Keys when using [validation_token]

        auto const tokenSecretKey =

            *parseBase58<SecretKey>(TokenType::NodePrivate, tokenSecretStr);


        auto const tokenPublicKey =

            derivePublicKey(KeyType::secp256k1, tokenSecretKey);


        auto const m = deserializeManifest(base64_decode(tokenManifest));

        BEAST_EXPECT(m);

        NodeID const tokenNodeID = calcNodeID(m->masterKey);


        {

            // No config -> no key but valid

            Config c;

            ValidatorKeys k{c, journal};

            BEAST_EXPECT(!k.keys);

            BEAST_EXPECT(k.manifest.empty());

            BEAST_EXPECT(!k.configInvalid());

        }

        {

            // validation seed section -> empty manifest and valid seeds

            Config c;

            c.section(SECTION_VALIDATION_SEED).append(seed);


            ValidatorKeys k{c, journal};

            if (BEAST_EXPECT(k.keys))

            {

                BEAST_EXPECT(k.keys->publicKey == seedPublicKey);

                BEAST_EXPECT(k.keys->secretKey == seedSecretKey);

            }

            BEAST_EXPECT(k.nodeID == seedNodeID);

            BEAST_EXPECT(k.manifest.empty());

            BEAST_EXPECT(!k.configInvalid());

        }


        {

            // validation seed bad seed -> invalid

            Config c;

            c.section(SECTION_VALIDATION_SEED).append("badseed");


            ValidatorKeys k{c, journal};

            BEAST_EXPECT(k.configInvalid());

            BEAST_EXPECT(!k.keys);

            BEAST_EXPECT(k.manifest.empty());

        }


        {

            // validator token

            Config c;

            c.section(SECTION_VALIDATOR_TOKEN).append(tokenBlob);

            ValidatorKeys k{c, journal};


            if (BEAST_EXPECT(k.keys))

            {

                BEAST_EXPECT(k.keys->publicKey == tokenPublicKey);

                BEAST_EXPECT(k.keys->secretKey == tokenSecretKey);

            }

            BEAST_EXPECT(k.nodeID == tokenNodeID);

            BEAST_EXPECT(k.manifest == tokenManifest);

            BEAST_EXPECT(!k.configInvalid());

        }

        {

            // invalid validator token

            Config c;

            c.section(SECTION_VALIDATOR_TOKEN).append("badtoken");

            ValidatorKeys k{c, journal};

            BEAST_EXPECT(k.configInvalid());

            BEAST_EXPECT(!k.keys);

            BEAST_EXPECT(k.manifest.empty());

        }


        {

            // Cannot specify both

            Config c;

            c.section(SECTION_VALIDATION_SEED).append(seed);

            c.section(SECTION_VALIDATOR_TOKEN).append(tokenBlob);

            ValidatorKeys k{c, journal};


            BEAST_EXPECT(k.configInvalid());

            BEAST_EXPECT(!k.keys);

            BEAST_EXPECT(k.manifest.empty());

        }


        {

            // Token manifest and private key must match

            Config c;

            c.section(SECTION_VALIDATOR_TOKEN).append(invalidTokenBlob);

            ValidatorKeys k{c, journal};


            BEAST_EXPECT(k.configInvalid());

            BEAST_EXPECT(!k.keys);

            BEAST_EXPECT(k.manifest.empty());

        }

    }


};  // namespace test


BEAST_DEFINE_TESTSUITE(ValidatorKeys, app, ripple);


}  // namespace test

}  // namespace ripple

std::string

beast::Journal
A generic endpoint for log messages.
Definition Journal.h:41

beast::unit_test::suite
A testsuite class.
Definition suite.h:52

ripple::BasicConfig::section
Section & section(std::string const &name)
Returns the section with the given name.
Definition BasicConfig.cpp:117

ripple::Config
Definition Config.h:67

ripple::PublicKey
A public key.
Definition PublicKey.h:43

ripple::SecretKey
A secret key.
Definition SecretKey.h:19

ripple::Section::append
void append(std::vector< std::string > const &lines)
Append a set of lines to this section.
Definition BasicConfig.cpp:28

ripple::ValidatorKeys
Validator keys and manifest as set in configuration file.
Definition ValidatorKeys.h:19

ripple::base_uint< 160, detail::NodeIDTag >

ripple::test::ValidatorKeys_test
Definition ValidatorKeys_test.cpp:17

ripple::test::ValidatorKeys_test::seed
std::string const seed
Definition ValidatorKeys_test.cpp:19

ripple::test::ValidatorKeys_test::run
void run() override
Runs the suite.
Definition ValidatorKeys_test.cpp:60

ripple::test::ValidatorKeys_test::tokenBlob
std::vector< std::string > const tokenBlob
Definition ValidatorKeys_test.cpp:25

ripple::test::ValidatorKeys_test::invalidTokenBlob
std::vector< std::string > const invalidTokenBlob
Definition ValidatorKeys_test.cpp:48

ripple::test::ValidatorKeys_test::tokenSecretStr
std::string const tokenSecretStr
Definition ValidatorKeys_test.cpp:22

ripple::test::ValidatorKeys_test::tokenManifest
std::string const tokenManifest
Definition ValidatorKeys_test.cpp:40

ripple::test::jtx::Env
A transaction testing environment.
Definition Env.h:102

beast::severities::kDisabled
@ kDisabled
Definition Journal.h:23

ripple::test::jtx::envconfig
std::unique_ptr< Config > envconfig()
creates and initializes a default configuration for jtx::Env
Definition envconfig.h:35

ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:6

ripple::deserializeManifest
std::optional< Manifest > deserializeManifest(Slice s, beast::Journal journal)
Constructs Manifest from serialized string.
Definition Manifest.cpp:35

ripple::TokenType::NodePrivate
@ NodePrivate

ripple::base64_decode
std::string base64_decode(std::string_view data)
Definition libxrpl/basics/base64.cpp:226

ripple::derivePublicKey
PublicKey derivePublicKey(KeyType type, SecretKey const &sk)
Derive the public key from a secret key.
Definition SecretKey.cpp:312

ripple::generateSecretKey
SecretKey generateSecretKey(KeyType type, Seed const &seed)
Generate a new secret key deterministically.
Definition SecretKey.cpp:290

ripple::KeyType::secp256k1
@ secp256k1

ripple::calcNodeID
NodeID calcNodeID(PublicKey const &)
Calculate the 160-bit node ID from a node public key.
Definition PublicKey.cpp:301

string

std::vector