gnosis/lighthouse
1
0
Fork 0
mirror of https://github.com/sigp/lighthouse.git synced 2026-04-18 21:38:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

swap out rust-crypto for RustCrypto libraries for key management (#1270)

Browse Source 
* swap out rust-crypto for RustCrypto libraries for key management

* change scrypt params unrwap to expect

* delete eth2 key derivation path file, fix error handling in eth2 keystore, pr updates
This commit is contained in:
realbigsean
2020-07-01 04:01:03 -04:00
committed by GitHub
parent 536728b975
commit 9dab928572
7 changed files with 262 additions and 813 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
crypto/eth2_keystore/src/json_keystore/kdf_module.rs
View File

@@ -4,9 +4,9 @@
//! data structures. Specifically, there should not be any actual crypto logic in this file.
use super::hex_bytes::HexBytes;
use crypto::sha2::Sha256;
use crypto::{hmac::Hmac, mac::Mac};
use hmac::{Hmac, Mac, NewMac};
use serde::{Deserialize, Serialize};
use sha2::Sha256;
use std::convert::TryFrom;
/// KDF module representation.
@@ -66,7 +66,9 @@ pub enum Prf {
impl Prf {
pub fn mac(&self, password: &[u8]) -> impl Mac {
match &self {
_hmac_sha256 => Hmac::new(Sha256::new(), password),
_hmac_sha256 => {
Hmac::<Sha256>::new_varkey(password).expect("Could not derive HMAC using SHA256.")
}
}
}
}

69
crypto/eth2_keystore/src/keystore.rs
View File

@@ -7,11 +7,20 @@ use crate::json_keystore::{
Kdf, KdfModule, Scrypt, Sha256Checksum, Version,
};
use crate::Uuid;
use aes_ctr::stream_cipher::generic_array::GenericArray;
use aes_ctr::stream_cipher::{NewStreamCipher, SyncStreamCipher};
use aes_ctr::Aes128Ctr as AesCtr;
use bls::{Keypair, PublicKey, SecretHash, SecretKey};
use crypto::{digest::Digest, sha2::Sha256};
use eth2_key_derivation::PlainText;
use hmac::Hmac;
use pbkdf2::pbkdf2;
use rand::prelude::*;
use scrypt::{
errors::{InvalidOutputLen, InvalidParams},
scrypt, ScryptParams,
};
use serde::{Deserialize, Serialize};
use sha2::{Digest, Sha256};
use ssz::DecodeError;
use std::io::{Read, Write};
@@ -59,6 +68,8 @@ pub enum Error {
InvalidPbkdf2Param,
InvalidScryptParam,
IncorrectIvSize { expected: usize, len: usize },
ScryptInvalidParams(InvalidParams),
ScryptInvaidOutputLen(InvalidOutputLen),
}
/// Constructs a `Keystore`.
@@ -280,15 +291,13 @@ pub fn encrypt(
let derived_key = derive_key(&password, &kdf)?;
// Encrypt secret.
let mut cipher_text = vec![0; plain_text.len()];
let mut cipher_text = plain_text.to_vec();
match &cipher {
Cipher::Aes128Ctr(params) => {
crypto::aes::ctr(
crypto::aes::KeySize::KeySize128,
&derived_key.as_bytes()[0..16],
params.iv.as_bytes(),
)
.process(plain_text, &mut cipher_text);
let key = GenericArray::from_slice(&derived_key.as_bytes()[0..16]);
let nonce = GenericArray::from_slice(params.iv.as_bytes());
let mut cipher = AesCtr::new(&key, &nonce);
cipher.apply_keystream(&mut cipher_text);
}
};
@@ -316,21 +325,19 @@ pub fn decrypt(password: &[u8], crypto: &Crypto) -> Result<PlainText, Error> {
return Err(Error::InvalidPassword);
}
let mut plain_text = PlainText::zero(cipher_message.len());
let mut plain_text = PlainText::from(cipher_message.as_bytes().to_vec());
match &crypto.cipher.params {
Cipher::Aes128Ctr(params) => {
crypto::aes::ctr(
crypto::aes::KeySize::KeySize128,
&derived_key.as_bytes()[0..16],
// NOTE: we do not check the size of the `iv` as there is no guidance about
// this on EIP-2335.
//
// Reference:
//
// - https://github.com/ethereum/EIPs/issues/2339#issuecomment-623865023
params.iv.as_bytes(),
)
.process(cipher_message.as_bytes(), plain_text.as_mut_bytes());
let key = GenericArray::from_slice(&derived_key.as_bytes()[0..16]);
// NOTE: we do not check the size of the `iv` as there is no guidance about
// this on EIP-2335.
//
// Reference:
//
// - https://github.com/ethereum/EIPs/issues/2339#issuecomment-623865023
let nonce = GenericArray::from_slice(params.iv.as_bytes());
let mut cipher = AesCtr::new(&key, &nonce);
cipher.apply_keystream(plain_text.as_mut_bytes());
}
};
Ok(plain_text)
@@ -340,11 +347,11 @@ pub fn decrypt(password: &[u8], crypto: &Crypto) -> Result<PlainText, Error> {
/// `cipher_message`.
fn generate_checksum(derived_key: &DerivedKey, cipher_message: &[u8]) -> [u8; HASH_SIZE] {
let mut hasher = Sha256::new();
hasher.input(&derived_key.as_bytes()[16..32]);
hasher.input(cipher_message);
hasher.update(&derived_key.as_bytes()[16..32]);
hasher.update(cipher_message);
let mut digest = [0; HASH_SIZE];
hasher.result(&mut digest);
digest.copy_from_slice(&hasher.finalize());
digest
}
@@ -354,8 +361,6 @@ fn derive_key(password: &[u8], kdf: &Kdf) -> Result<DerivedKey, Error> {
match &kdf {
Kdf::Pbkdf2(params) => {
let mut mac = params.prf.mac(password);
// RFC2898 declares that `c` must be a "positive integer" and the `crypto` crate panics
// if it is `0`.
//
@@ -371,8 +376,8 @@ fn derive_key(password: &[u8], kdf: &Kdf) -> Result<DerivedKey, Error> {
return Err(Error::InvalidPbkdf2Param);
}
crypto::pbkdf2::pbkdf2(
&mut mac,
pbkdf2::<Hmac<Sha256>>(
password,
params.salt.as_bytes(),
params.c,
dk.as_mut_bytes(),
@@ -400,12 +405,14 @@ fn derive_key(password: &[u8], kdf: &Kdf) -> Result<DerivedKey, Error> {
return Err(Error::InvalidScryptParam);
}
crypto::scrypt::scrypt(
scrypt(
password,
params.salt.as_bytes(),
&crypto::scrypt::ScryptParams::new(log2_int(params.n) as u8, params.r, params.p),
&ScryptParams::new(log2_int(params.n) as u8, params.r, params.p)
.map_err(|e| Error::ScryptInvalidParams(e))?,
dk.as_mut_bytes(),
);
)
.map_err(|e| Error::ScryptInvaidOutputLen(e))?;
}
}