prysm-pulse/validator/accounts/account_test.go

package accounts

import (
	"encoding/hex"
	"flag"
	"fmt"
	"io/ioutil"
	"os"
	"testing"

	"github.com/prysmaticlabs/prysm/shared/keystore"
	"github.com/prysmaticlabs/prysm/shared/params"
	"github.com/prysmaticlabs/prysm/shared/testutil"
	"github.com/prysmaticlabs/prysm/validator/flags"
	"gopkg.in/urfave/cli.v2"
)

func TestNewValidatorAccount_AccountExists(t *testing.T) {
	directory := testutil.TempDir() + "/testkeystore"
	defer func() {
		if err := os.RemoveAll(directory); err != nil {
			t.Logf("Could not remove directory: %v", err)
		}
	}()
	validatorKey, err := keystore.NewKey()
	if err != nil {
		t.Fatalf("Cannot create new key: %v", err)
	}
	ks := keystore.NewKeystore(directory)
	if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, ""); err != nil {
		t.Fatalf("Unable to store key %v", err)
	}
	if err := NewValidatorAccount(directory, ""); err != nil {
		t.Errorf("Should support multiple keys: %v", err)
	}
	files, err := ioutil.ReadDir(directory)
	if err != nil {
		t.Error(err)
	}
	if len(files) != 3 {
		t.Errorf("multiple validators were not created only %v files in directory", len(files))
		for _, f := range files {
			t.Errorf("%v\n", f.Name())
		}
	}
}

func TestNewValidatorAccount_CreateValidatorAccount(t *testing.T) {
	directory := "foobar"
	_, _, err := CreateValidatorAccount(directory, "foobar")
	wantErrString := fmt.Sprintf("path %q does not exist", directory)
	if err == nil || err.Error() != wantErrString {
		t.Errorf("expected error not thrown, want: %v, got: %v", wantErrString, err)
	}
}

func TestHandleEmptyFlags_FlagsSet(t *testing.T) {
	passedPath := "~/path/given"
	passedPassword := "password"

	app := &cli.App{}
	set := flag.NewFlagSet("test", 0)
	set.String(flags.KeystorePathFlag.Name, passedPath, "set keystore path")
	set.String(flags.PasswordFlag.Name, passedPassword, "set keystore password")
	ctx := cli.NewContext(app, set, nil)
	path, passphrase, err := HandleEmptyKeystoreFlags(ctx, false)
	if err != nil {
		t.Fatal(err)
	}

	if passedPath != path {
		t.Fatalf("Expected set path to be unchanged, expected %s, received %s", passedPath, path)
	}
	if passedPassword != passphrase {
		t.Fatalf("Expected set password to be unchanged, expected %s, received %s", passedPassword, passphrase)
	}
}

func TestChangePassword_KeyEncryptedWithNewPassword(t *testing.T) {
	directory := testutil.TempDir() + "/testkeystore"
	defer func() {
		if err := os.RemoveAll(directory); err != nil {
			t.Logf("Could not remove directory: %v", err)
		}
	}()

	oldPassword := "old"
	newPassword := "new"

	validatorKey, err := keystore.NewKey()
	if err != nil {
		t.Fatalf("Cannot create new key: %v", err)
	}
	ks := keystore.NewKeystore(directory)
	if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, oldPassword); err != nil {
		t.Fatalf("Unable to store key %v", err)
	}

	if err := ChangePassword(directory, oldPassword, newPassword); err != nil {
		t.Fatal(err)
	}

	keys, err := DecryptKeysFromKeystore(directory, params.BeaconConfig().ValidatorPrivkeyFileName, newPassword)
	if err != nil {
		t.Fatal(err)
	}
	if _, ok := keys[hex.EncodeToString(validatorKey.PublicKey.Marshal())]; !ok {
		t.Error("Key not encrypted using the new password")
	}
}

func TestChangePassword_KeyNotMatchingOldPasswordNotEncryptedWithNewPassword(t *testing.T) {
	directory := testutil.TempDir() + "/testkeystore"
	defer func() {
		if err := os.RemoveAll(directory); err != nil {
			t.Logf("Could not remove directory: %v", err)
		}
	}()

	oldPassword := "old"
	newPassword := "new"

	validatorKey, err := keystore.NewKey()
	if err != nil {
		t.Fatalf("Cannot create new key: %v", err)
	}
	ks := keystore.NewKeystore(directory)
	if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, "notmatching"); err != nil {
		t.Fatalf("Unable to store key %v", err)
	}

	if err := ChangePassword(directory, oldPassword, newPassword); err != nil {
		t.Fatal(err)
	}

	keys, err := DecryptKeysFromKeystore(directory, params.BeaconConfig().ValidatorPrivkeyFileName, newPassword)
	if err != nil {
		t.Fatal(err)
	}
	if _, ok := keys[hex.EncodeToString(validatorKey.PublicKey.Marshal())]; ok {
		t.Error("Key incorrectly encrypted using the new password")
	}
}
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`package accounts`

			`import (`
Change validator password (#5869) * Created merge command * Key merging * Merge branch 'master' into db-manage-validators * flag comments * fixed compilation errors * added comment to Merge function * Tested that merging copies keys * Created command to change password for keys * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * cleanup after code review * Merge remote-tracking branch 'rkapka/change-validator-password' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password 2020-05-18 21:35:17 +00:00			`"encoding/hex"`
Remove flag requirement from accounts keys (#5757) * Remove flag requirements for keystore-path and password * Add test for HandleEmptyFlags * Add comment Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 05:55:25 +00:00			`"flag"`
Enforce validator's keystore dir (#5707) * enforces keystore dir * Merge refs/heads/master into recheck-before-raw-tx-data * do not ignore error * Merge branch 'recheck-before-raw-tx-data' of github.com:prysmaticlabs/prysm into recheck-before-raw-tx-data 2020-05-01 15:12:26 +00:00			`"fmt"`
keystore and account support for multi key (#2054) * keystore and account support for multi key * fix service issues * fix Potential file inclusion * fix Potential file inclusion try2 * Update shared/keystore/keystore.go remove security detection for file read Co-Authored-By: shayzluf <thezluf@gmail.com> * getkeys uses map to pt multiple copies of the same key * use 12 char of public key to differentiate file names * use map in test * fix changes from 2069 into here * add // #nosec G304 2019-03-29 22:26:41 +00:00			`"io/ioutil"`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`"os"`
			`"testing"`

			`"github.com/prysmaticlabs/prysm/shared/keystore"`
Test Syncing with Another Fully Synced Service (#1594) * clean up test * adding test setup * add chainstart check to sync querier * goimports * goimports * backend cleanup * adding getters * lint * moving to db * gazelle * adding more services setup * adding more changes * adding different test setups * other merge issues * imports * fixing keys * get intial sync able to be set up * new changes and gazelle * use simulated p2p * everything finally works * unexport fields * revert changes from merge * remove mock server * add documentation * gazelle * add another node * review comments * fix tests 2019-02-23 06:06:20 +00:00			`"github.com/prysmaticlabs/prysm/shared/params"`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`"github.com/prysmaticlabs/prysm/shared/testutil"`
Remove flag requirement from accounts keys (#5757) * Remove flag requirements for keystore-path and password * Add test for HandleEmptyFlags * Add comment Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 05:55:25 +00:00			`"github.com/prysmaticlabs/prysm/validator/flags"`
			`"gopkg.in/urfave/cli.v2"`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`)`

			`func TestNewValidatorAccount_AccountExists(t *testing.T) {`
Provide Real Keystore to Validator Service for Public/Private Key Access at Runtime (#1570) * provide validator with real keystore public key * fmt * build errors buildkite * readd imports removed by goimport * gazelle * address broken tests * make reference to filename a param * fmt * imports * gazelle * os remove all * Use better Temp storage for tests * testmain approach to avoid repeating expensive operation for each test * travis lint * fix test * nokeystore in status test * passing * fix goimports 2019-02-13 23:49:06 +00:00			`directory := testutil.TempDir() + "/testkeystore"`
proper error checking and type assertions (#5424) * proper error checking and type assertions 2020-04-14 16:41:09 +00:00			`defer func() {`
			`if err := os.RemoveAll(directory); err != nil {`
Enforce validator's keystore dir (#5707) * enforces keystore dir * Merge refs/heads/master into recheck-before-raw-tx-data * do not ignore error * Merge branch 'recheck-before-raw-tx-data' of github.com:prysmaticlabs/prysm into recheck-before-raw-tx-data 2020-05-01 15:12:26 +00:00			`t.Logf("Could not remove directory: %v", err)`
proper error checking and type assertions (#5424) * proper error checking and type assertions 2020-04-14 16:41:09 +00:00			`}`
			`}()`
Remove unused parameters and unused code (#4452) * Remove unused parameters * Remove unused deposit contract config 2020-01-07 23:45:29 +00:00			`validatorKey, err := keystore.NewKey()`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`if err != nil {`
			`t.Fatalf("Cannot create new key: %v", err)`
			`}`
			`ks := keystore.NewKeystore(directory)`
Provide Real Keystore to Validator Service for Public/Private Key Access at Runtime (#1570) * provide validator with real keystore public key * fmt * build errors buildkite * readd imports removed by goimport * gazelle * address broken tests * make reference to filename a param * fmt * imports * gazelle * os remove all * Use better Temp storage for tests * testmain approach to avoid repeating expensive operation for each test * travis lint * fix test * nokeystore in status test * passing * fix goimports 2019-02-13 23:49:06 +00:00			`if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, ""); err != nil {`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`t.Fatalf("Unable to store key %v", err)`
			`}`
keystore and account support for multi key (#2054) * keystore and account support for multi key * fix service issues * fix Potential file inclusion * fix Potential file inclusion try2 * Update shared/keystore/keystore.go remove security detection for file read Co-Authored-By: shayzluf <thezluf@gmail.com> * getkeys uses map to pt multiple copies of the same key * use 12 char of public key to differentiate file names * use map in test * fix changes from 2069 into here * add // #nosec G304 2019-03-29 22:26:41 +00:00			`if err := NewValidatorAccount(directory, ""); err != nil {`
			`t.Errorf("Should support multiple keys: %v", err)`
			`}`
proper error checking and type assertions (#5424) * proper error checking and type assertions 2020-04-14 16:41:09 +00:00			`files, err := ioutil.ReadDir(directory)`
			`if err != nil {`
			`t.Error(err)`
			`}`
keystore and account support for multi key (#2054) * keystore and account support for multi key * fix service issues * fix Potential file inclusion * fix Potential file inclusion try2 * Update shared/keystore/keystore.go remove security detection for file read Co-Authored-By: shayzluf <thezluf@gmail.com> * getkeys uses map to pt multiple copies of the same key * use 12 char of public key to differentiate file names * use map in test * fix changes from 2069 into here * add // #nosec G304 2019-03-29 22:26:41 +00:00			`if len(files) != 3 {`
Validator-multiple key (#2069) * first version - broken * working proto changes * resolve review remarks * fix goimport issues * fix service issues * first logic version-broken * first running version - no new tests * fix validator client test * add wait group to goroutines * remove unused var in function call * fix review remarks and tests * merge master changes and fix conflicts * gazzele fix * fix prestonvanloon requested changes * merge and some of terenc3t remarks addressed * _,pk bug fix in log * fix account file name suffix and filter not active validator out * merge with master and fix missing parameters * run over all public keys in hasvalidators * add test for error when no all the validators has index in the db and hasvalidators is called * fix runner tests fail due to timing issues * goimports * smaller sleep time in proposer tests * fix UpdateAssignments loging * fix goimports * added && false commented TestUpdateAssignments_DoesNothingWhenNotEpochStartAndAlreadyExistingAssignments * hasvalidators without missing publickeys list * fix some of prestone review remarks * fixes for prestone comments * review changes applied * expect context call in TestWaitForActivation_ValidatorOriginallyExists * changed hasvalidators to return true if one validator exists * fix init problem to getkeys * hasvalidators requiers all validators to be in db * validator attest assignments update * fix ap var name * Change name to hasallvalidators * fix tests * update script, fix any vs all validator calls * fix wait for activation * filter validator * reuse the reply block * fix imports * Remove dup * better lookup of active validators * better filter active vlaidators, still need to fix committee assignment tests * lint * use activated keys * fix for postchainstart * fix logging * move state transitions * hasanyvalidator and hasallvalidators * fix tests with updatechainhead missing * add tests * fix TestCommitteeAssignment_OK * fix test * fix validator tests * fix TestCommitteeAssignment_multipleKeys_OK and TestWaitForActivation_ValidatorOriginallyExists * fix goimports * removed unused param from assignment * change string(pk) to hex.EncodeString(pk) fix change requests * add inactive validator status to assignments * fix logging mess due to multi validator setup * set no assignment to debug level * log assignments every epoch * logging fixes * fixed runtime by using the right assignments * correct activation request * fix the validator panic * correct assignment * fix test fail and waitforactivation * performance log issue fix * fix goimports * add log message with truncated pk for attest * add truncated pk to attest and propose logs * Add comment to script, change 9 to 8 * Update assignment log * Add comment, report number of assignments * Use WithError, add validator as field, merge block proposal log * Update validator_propose.go * fix * use entry.String() * fix fmt 2019-04-18 17:23:38 +00:00			`t.Errorf("multiple validators were not created only %v files in directory", len(files))`
keystore and account support for multi key (#2054) * keystore and account support for multi key * fix service issues * fix Potential file inclusion * fix Potential file inclusion try2 * Update shared/keystore/keystore.go remove security detection for file read Co-Authored-By: shayzluf <thezluf@gmail.com> * getkeys uses map to pt multiple copies of the same key * use 12 char of public key to differentiate file names * use map in test * fix changes from 2069 into here * add // #nosec G304 2019-03-29 22:26:41 +00:00			`for _, f := range files {`
			`t.Errorf("%v\n", f.Name())`
			`}`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`}`
Enforce validator's keystore dir (#5707) * enforces keystore dir * Merge refs/heads/master into recheck-before-raw-tx-data * do not ignore error * Merge branch 'recheck-before-raw-tx-data' of github.com:prysmaticlabs/prysm into recheck-before-raw-tx-data 2020-05-01 15:12:26 +00:00			`}`

			`func TestNewValidatorAccount_CreateValidatorAccount(t *testing.T) {`
			`directory := "foobar"`
			`_, _, err := CreateValidatorAccount(directory, "foobar")`
			`wantErrString := fmt.Sprintf("path %q does not exist", directory)`
			`if err == nil \|\| err.Error() != wantErrString {`
			`t.Errorf("expected error not thrown, want: %v, got: %v", wantErrString, err)`
Validator Secret Initialization (#1436) * begin validator initialization * utilize keystore * cli create * add items * validator accounts package * completed tests * linter * fix broken build 2019-01-31 11:57:57 +00:00			`}`
			`}`
Remove flag requirement from accounts keys (#5757) * Remove flag requirements for keystore-path and password * Add test for HandleEmptyFlags * Add comment Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 05:55:25 +00:00
Add confirm password to validator accounts create (#5762) * Add confirm password to accounts create * Fix build * Update shared/cmd/helpers.go * Update shared/cmd/helpers.go Co-authored-by: Shay Zluf <thezluf@gmail.com> * Change to return empty "" Co-authored-by: terence tsao <terence@prysmaticlabs.com> Co-authored-by: Raul Jordan <raul@prysmaticlabs.com> Co-authored-by: Shay Zluf <thezluf@gmail.com> Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 23:50:19 +00:00			`func TestHandleEmptyFlags_FlagsSet(t *testing.T) {`
Remove flag requirement from accounts keys (#5757) * Remove flag requirements for keystore-path and password * Add test for HandleEmptyFlags * Add comment Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 05:55:25 +00:00			`passedPath := "~/path/given"`
			`passedPassword := "password"`

			`app := &cli.App{}`
			`set := flag.NewFlagSet("test", 0)`
			`set.String(flags.KeystorePathFlag.Name, passedPath, "set keystore path")`
			`set.String(flags.PasswordFlag.Name, passedPassword, "set keystore password")`
			`ctx := cli.NewContext(app, set, nil)`
Change validator password (#5869) * Created merge command * Key merging * Merge branch 'master' into db-manage-validators * flag comments * fixed compilation errors * added comment to Merge function * Tested that merging copies keys * Created command to change password for keys * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * cleanup after code review * Merge remote-tracking branch 'rkapka/change-validator-password' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password 2020-05-18 21:35:17 +00:00			`path, passphrase, err := HandleEmptyKeystoreFlags(ctx, false)`
Remove flag requirement from accounts keys (#5757) * Remove flag requirements for keystore-path and password * Add test for HandleEmptyFlags * Add comment Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com> 2020-05-06 05:55:25 +00:00			`if err != nil {`
			`t.Fatal(err)`
			`}`

			`if passedPath != path {`
			`t.Fatalf("Expected set path to be unchanged, expected %s, received %s", passedPath, path)`
			`}`
			`if passedPassword != passphrase {`
			`t.Fatalf("Expected set password to be unchanged, expected %s, received %s", passedPassword, passphrase)`
			`}`
			`}`
Change validator password (#5869) * Created merge command * Key merging * Merge branch 'master' into db-manage-validators * flag comments * fixed compilation errors * added comment to Merge function * Tested that merging copies keys * Created command to change password for keys * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * cleanup after code review * Merge remote-tracking branch 'rkapka/change-validator-password' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password * Merge branch 'master' into change-validator-password 2020-05-18 21:35:17 +00:00
			`func TestChangePassword_KeyEncryptedWithNewPassword(t *testing.T) {`
			`directory := testutil.TempDir() + "/testkeystore"`
			`defer func() {`
			`if err := os.RemoveAll(directory); err != nil {`
			`t.Logf("Could not remove directory: %v", err)`
			`}`
			`}()`

			`oldPassword := "old"`
			`newPassword := "new"`

			`validatorKey, err := keystore.NewKey()`
			`if err != nil {`
			`t.Fatalf("Cannot create new key: %v", err)`
			`}`
			`ks := keystore.NewKeystore(directory)`
			`if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, oldPassword); err != nil {`
			`t.Fatalf("Unable to store key %v", err)`
			`}`

			`if err := ChangePassword(directory, oldPassword, newPassword); err != nil {`
			`t.Fatal(err)`
			`}`

			`keys, err := DecryptKeysFromKeystore(directory, params.BeaconConfig().ValidatorPrivkeyFileName, newPassword)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`if _, ok := keys[hex.EncodeToString(validatorKey.PublicKey.Marshal())]; !ok {`
			`t.Error("Key not encrypted using the new password")`
			`}`
			`}`

			`func TestChangePassword_KeyNotMatchingOldPasswordNotEncryptedWithNewPassword(t *testing.T) {`
			`directory := testutil.TempDir() + "/testkeystore"`
			`defer func() {`
			`if err := os.RemoveAll(directory); err != nil {`
			`t.Logf("Could not remove directory: %v", err)`
			`}`
			`}()`

			`oldPassword := "old"`
			`newPassword := "new"`

			`validatorKey, err := keystore.NewKey()`
			`if err != nil {`
			`t.Fatalf("Cannot create new key: %v", err)`
			`}`
			`ks := keystore.NewKeystore(directory)`
			`if err := ks.StoreKey(directory+params.BeaconConfig().ValidatorPrivkeyFileName, validatorKey, "notmatching"); err != nil {`
			`t.Fatalf("Unable to store key %v", err)`
			`}`

			`if err := ChangePassword(directory, oldPassword, newPassword); err != nil {`
			`t.Fatal(err)`
			`}`

			`keys, err := DecryptKeysFromKeystore(directory, params.BeaconConfig().ValidatorPrivkeyFileName, newPassword)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`if _, ok := keys[hex.EncodeToString(validatorKey.PublicKey.Marshal())]; ok {`
			`t.Error("Key incorrectly encrypted using the new password")`
			`}`
			`}`