lbcwallet/waddrmgr/internal_test.go

// Copyright (c) 2014 The btcsuite developers
// Use of this source code is governed by an ISC
// license that can be found in the LICENSE file.

/*
This test file is part of the waddrmgr package rather than than the
waddrmgr_test package so it can bridge access to the internals to properly test
cases which are either not possible or can't reliably be tested via the public
interface. The functions are only exported while the tests are being run.
*/

package waddrmgr

import (
	"errors"

	"github.com/btcsuite/btcwallet/snacl"
)

// TstLatestMgrVersion makes the unexported latestMgrVersion variable available
// for change when the tests are run.
var TstLatestMgrVersion = &latestMgrVersion

// Replace the Manager.newSecretKey function with the given one and calls
// the callback function. Afterwards the original newSecretKey
// function will be restored.
func TstRunWithReplacedNewSecretKey(callback func()) {
	orig := newSecretKey
	defer func() {
		newSecretKey = orig
	}()
	newSecretKey = func(passphrase *[]byte, config *ScryptOptions) (*snacl.SecretKey, error) {
		return nil, snacl.ErrDecryptFailed
	}
	callback()
}

// TstCheckPublicPassphrase returns true if the provided public passphrase is
// correct for the manager.
func (m *Manager) TstCheckPublicPassphrase(pubPassphrase []byte) bool {
	secretKey := snacl.SecretKey{Key: &snacl.CryptoKey{}}
	secretKey.Parameters = m.masterKeyPub.Parameters
	err := secretKey.DeriveKey(&pubPassphrase)
	return err == nil
}

// failingCryptoKey is an implementation of the EncryptorDecryptor interface
// with intentionally fails when attempting to encrypt or decrypt with it.
type failingCryptoKey struct {
	cryptoKey
}

// Encrypt intenionally returns a failure when invoked to test error paths.
//
// This is part of the EncryptorDecryptor interface implementation.
func (c *failingCryptoKey) Encrypt(in []byte) ([]byte, error) {
	return nil, errors.New("failed to encrypt")
}

// Decrypt intenionally returns a failure when invoked to test error paths.
//
// This is part of the EncryptorDecryptor interface implementation.
func (c *failingCryptoKey) Decrypt(in []byte) ([]byte, error) {
	return nil, errors.New("failed to decrypt")
}

// TstRunWithFailingCryptoKeyPriv runs the provided callback with the
// private crypto key replaced with a version that fails to help test error
// paths.
func TstRunWithFailingCryptoKeyPriv(m *Manager, callback func()) {
	orig := m.cryptoKeyPriv
	defer func() {
		m.cryptoKeyPriv = orig
	}()
	m.cryptoKeyPriv = &failingCryptoKey{}
	callback()
}

// TstDefaultAccountName is the constant defaultAccountName exported for tests.
const TstDefaultAccountName = defaultAccountName
Use LICENSE file and short license headers. 2015-12-01 19:44:58 +01:00			`// Copyright (c) 2014 The btcsuite developers`
			`// Use of this source code is governed by an ISC`
			`// license that can be found in the LICENSE file.`
Provide new wallet address manager package. This commit implements a new secure, scalable, hierarchical deterministic wallet address manager package. The following is an overview of features: - BIP0032 hierarchical deterministic keys - BIP0043/BIP0044 multi-account hierarchy - Strong focus on security: - Fully encrypted database including public information such as addresses as well as private information such as private keys and scripts needed to redeem pay-to-script-hash transactions - Hardened against memory scraping through the use of actively clearing private material from memory when locked - Different crypto keys used for public, private, and script data - Ability for different passphrases for public and private data - Scrypt-based key derivation - NaCl-based secretbox cryptography (XSalsa20 and Poly1305) - Multi-tier scalable key design to allow instant password changes regardless of the number of addresses stored - Import WIF keys - Import pay-to-script-hash scripts for things such as multi-signature transactions - Ability to export a watching-only version which does not contain any private key material - Programmatically detectable errors, including encapsulation of errors from packages it relies on - Address synchronization capabilities This commit only provides the implementation package. It does not include integration into to the existing wallet code base or conversion of existing addresses. That functionality will be provided by future commits. 2014-08-08 22:43:50 +02:00
			`/*`
			`This test file is part of the waddrmgr package rather than than the`
			`waddrmgr_test package so it can bridge access to the internals to properly test`
			`cases which are either not possible or can't reliably be tested via the public`
			`interface. The functions are only exported while the tests are being run.`
			`*/`

			`package waddrmgr`

Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`import (`
			`"errors"`

multi: switch import paths back to upstream 2018-05-15 07:11:11 +02:00			`"github.com/btcsuite/btcwallet/snacl"`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`)`
Provide new wallet address manager package. This commit implements a new secure, scalable, hierarchical deterministic wallet address manager package. The following is an overview of features: - BIP0032 hierarchical deterministic keys - BIP0043/BIP0044 multi-account hierarchy - Strong focus on security: - Fully encrypted database including public information such as addresses as well as private information such as private keys and scripts needed to redeem pay-to-script-hash transactions - Hardened against memory scraping through the use of actively clearing private material from memory when locked - Different crypto keys used for public, private, and script data - Ability for different passphrases for public and private data - Scrypt-based key derivation - NaCl-based secretbox cryptography (XSalsa20 and Poly1305) - Multi-tier scalable key design to allow instant password changes regardless of the number of addresses stored - Import WIF keys - Import pay-to-script-hash scripts for things such as multi-signature transactions - Ability to export a watching-only version which does not contain any private key material - Programmatically detectable errors, including encapsulation of errors from packages it relies on - Address synchronization capabilities This commit only provides the implementation package. It does not include integration into to the existing wallet code base or conversion of existing addresses. That functionality will be provided by future commits. 2014-08-08 22:43:50 +02:00
waddrmgr: Make create/update logic more explicit. This commit makes the creation and updating of the address manager more explicit so it's easier to upgrade in the future. In particular, rather than treating the initial creation as an upgrade by relying on creating the initial buckets on the fly on each load, the code now explicitly provides distinct create and upgrade paths that are invoked from the Create and Open functions, respectively. It also adds some commented out sample code to illustrate how upgrades should be done and a check to ensure bumping the version number without writing upgrade code results in a new error, ErrUpgrade, being returned. Finally, a test has been added for the new functionality. 2015-03-03 18:51:21 +01:00			`// TstLatestMgrVersion makes the unexported latestMgrVersion variable available`
			`// for change when the tests are run.`
			`var TstLatestMgrVersion = &latestMgrVersion`

Make scrypt parameters overridable/optional 2014-10-24 08:56:54 +02:00			`// Replace the Manager.newSecretKey function with the given one and calls`
			`// the callback function. Afterwards the original newSecretKey`
			`// function will be restored.`
			`func TstRunWithReplacedNewSecretKey(callback func()) {`
			`orig := newSecretKey`
			`defer func() {`
			`newSecretKey = orig`
			`}()`
Refactor wallet opening. Rather than the main package being responsible for opening the address and transaction managers, the namespaces of these components are passed as parameters to the wallet.Open function. Additionally, the address manager Options struct has been split into two: ScryptOptions which holds the scrypt parameters needed during passphrase key derivation, and OpenCallbacks which is only passed to the Open function to allow the caller to provide additional details during upgrades. These changes are being done in preparation for a notification server in the wallet package, with callbacks passed to the Open and Create functions in waddrmgr and wtxmgr. Before this could happen, the wallet package had to be responsible for actually opening the managers from their namespaces. 2015-05-13 19:11:40 +02:00			`newSecretKey = func(passphrase []byte, config ScryptOptions) (*snacl.SecretKey, error) {`
Provide new wallet address manager package. This commit implements a new secure, scalable, hierarchical deterministic wallet address manager package. The following is an overview of features: - BIP0032 hierarchical deterministic keys - BIP0043/BIP0044 multi-account hierarchy - Strong focus on security: - Fully encrypted database including public information such as addresses as well as private information such as private keys and scripts needed to redeem pay-to-script-hash transactions - Hardened against memory scraping through the use of actively clearing private material from memory when locked - Different crypto keys used for public, private, and script data - Ability for different passphrases for public and private data - Scrypt-based key derivation - NaCl-based secretbox cryptography (XSalsa20 and Poly1305) - Multi-tier scalable key design to allow instant password changes regardless of the number of addresses stored - Import WIF keys - Import pay-to-script-hash scripts for things such as multi-signature transactions - Ability to export a watching-only version which does not contain any private key material - Programmatically detectable errors, including encapsulation of errors from packages it relies on - Address synchronization capabilities This commit only provides the implementation package. It does not include integration into to the existing wallet code base or conversion of existing addresses. That functionality will be provided by future commits. 2014-08-08 22:43:50 +02:00			`return nil, snacl.ErrDecryptFailed`
			`}`
Make scrypt parameters overridable/optional 2014-10-24 08:56:54 +02:00			`callback()`
Provide new wallet address manager package. This commit implements a new secure, scalable, hierarchical deterministic wallet address manager package. The following is an overview of features: - BIP0032 hierarchical deterministic keys - BIP0043/BIP0044 multi-account hierarchy - Strong focus on security: - Fully encrypted database including public information such as addresses as well as private information such as private keys and scripts needed to redeem pay-to-script-hash transactions - Hardened against memory scraping through the use of actively clearing private material from memory when locked - Different crypto keys used for public, private, and script data - Ability for different passphrases for public and private data - Scrypt-based key derivation - NaCl-based secretbox cryptography (XSalsa20 and Poly1305) - Multi-tier scalable key design to allow instant password changes regardless of the number of addresses stored - Import WIF keys - Import pay-to-script-hash scripts for things such as multi-signature transactions - Ability to export a watching-only version which does not contain any private key material - Programmatically detectable errors, including encapsulation of errors from packages it relies on - Address synchronization capabilities This commit only provides the implementation package. It does not include integration into to the existing wallet code base or conversion of existing addresses. That functionality will be provided by future commits. 2014-08-08 22:43:50 +02:00			`}`

Implement the deposit side of Voting Pools This contains the APIs to create and retrieve Voting Pools and Series (with public/private keys) from a walletdb namespace, plus the generation of deposit addresses (using m-of-n multi-sig P2SH scripts according to the series configuration). 2014-06-13 19:14:44 +02:00			`// TstCheckPublicPassphrase returns true if the provided public passphrase is`
Provide new wallet address manager package. This commit implements a new secure, scalable, hierarchical deterministic wallet address manager package. The following is an overview of features: - BIP0032 hierarchical deterministic keys - BIP0043/BIP0044 multi-account hierarchy - Strong focus on security: - Fully encrypted database including public information such as addresses as well as private information such as private keys and scripts needed to redeem pay-to-script-hash transactions - Hardened against memory scraping through the use of actively clearing private material from memory when locked - Different crypto keys used for public, private, and script data - Ability for different passphrases for public and private data - Scrypt-based key derivation - NaCl-based secretbox cryptography (XSalsa20 and Poly1305) - Multi-tier scalable key design to allow instant password changes regardless of the number of addresses stored - Import WIF keys - Import pay-to-script-hash scripts for things such as multi-signature transactions - Ability to export a watching-only version which does not contain any private key material - Programmatically detectable errors, including encapsulation of errors from packages it relies on - Address synchronization capabilities This commit only provides the implementation package. It does not include integration into to the existing wallet code base or conversion of existing addresses. That functionality will be provided by future commits. 2014-08-08 22:43:50 +02:00			`// correct for the manager.`
			`func (m *Manager) TstCheckPublicPassphrase(pubPassphrase []byte) bool {`
			`secretKey := snacl.SecretKey{Key: &snacl.CryptoKey{}}`
			`secretKey.Parameters = m.masterKeyPub.Parameters`
			`err := secretKey.DeriveKey(&pubPassphrase)`
			`return err == nil`
			`}`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00
Cleanup recent encrypt/decrypt test additions. This commit cleans up the recent test addition for testing the positive and negative error paths of the Encrypt and Decrypt functions. In particular: - Add comments to all new functions - Close the manager before trying to delete the file which is otherwise in use - Rename the temp prefix since these are not pool tests - Rename setUp to setupManager to make it a bit more explicit what it's doing 2014-11-11 04:37:44 +01:00			`// failingCryptoKey is an implementation of the EncryptorDecryptor interface`
			`// with intentionally fails when attempting to encrypt or decrypt with it.`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`type failingCryptoKey struct {`
			`cryptoKey`
			`}`

Cleanup recent encrypt/decrypt test additions. This commit cleans up the recent test addition for testing the positive and negative error paths of the Encrypt and Decrypt functions. In particular: - Add comments to all new functions - Close the manager before trying to delete the file which is otherwise in use - Rename the temp prefix since these are not pool tests - Rename setUp to setupManager to make it a bit more explicit what it's doing 2014-11-11 04:37:44 +01:00			`// Encrypt intenionally returns a failure when invoked to test error paths.`
			`//`
			`// This is part of the EncryptorDecryptor interface implementation.`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`func (c *failingCryptoKey) Encrypt(in []byte) ([]byte, error) {`
			`return nil, errors.New("failed to encrypt")`
			`}`

Cleanup recent encrypt/decrypt test additions. This commit cleans up the recent test addition for testing the positive and negative error paths of the Encrypt and Decrypt functions. In particular: - Add comments to all new functions - Close the manager before trying to delete the file which is otherwise in use - Rename the temp prefix since these are not pool tests - Rename setUp to setupManager to make it a bit more explicit what it's doing 2014-11-11 04:37:44 +01:00			`// Decrypt intenionally returns a failure when invoked to test error paths.`
			`//`
			`// This is part of the EncryptorDecryptor interface implementation.`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`func (c *failingCryptoKey) Decrypt(in []byte) ([]byte, error) {`
			`return nil, errors.New("failed to decrypt")`
			`}`

Cleanup recent encrypt/decrypt test additions. This commit cleans up the recent test addition for testing the positive and negative error paths of the Encrypt and Decrypt functions. In particular: - Add comments to all new functions - Close the manager before trying to delete the file which is otherwise in use - Rename the temp prefix since these are not pool tests - Rename setUp to setupManager to make it a bit more explicit what it's doing 2014-11-11 04:37:44 +01:00			`// TstRunWithFailingCryptoKeyPriv runs the provided callback with the`
			`// private crypto key replaced with a version that fails to help test error`
			`// paths.`
Add tests for new encryption API on the manager 100% coverage on selectCryptoKey, Encrypt, Decrypt. 2014-11-03 12:52:41 +01:00			`func TstRunWithFailingCryptoKeyPriv(m *Manager, callback func()) {`
			`orig := m.cryptoKeyPriv`
			`defer func() {`
			`m.cryptoKeyPriv = orig`
			`}()`
			`m.cryptoKeyPriv = &failingCryptoKey{}`
			`callback()`
			`}`
Modify default account naming policy. Rather than disallowing the default account to be renamed as was proposed in #245 (and implemented in #246), the default account name is no longer considered a reserved name by the address manager. Instead, it is simply the initial name used for the first initial account. A database upgrade removes any additional aliases for the default account in the database. This prevents a lookup for some name which is not an account name from mapping to the default account unexpectedly (potentially preventing incorrect account usage from the RPC server due to bad iteraction with default parameters). All unset account names in a JSON-RPC request are expected to be set nil by btcjson. This behavior depends on btcsuite/btcd#399. Additionally, the manager no longer considers the wildcard * to be a reserved account name. Due to poor API decisions, the RPC server overloads the meaning of account fields to optionally allow referring to all accounts at a time, or a single account. This is not a address manager responsibility, though, as a future cleaner API should not use multiple differet meanings for the same field across multiple requests. Therefore, don't burden down future APIs with this quirk and prevent incorrect wildcard usage from the RPC server. Closes #245. 2015-04-16 18:54:56 +02:00
			`// TstDefaultAccountName is the constant defaultAccountName exported for tests.`
			`const TstDefaultAccountName = defaultAccountName`