Improve docs

fboucquez · fboucquez · commit c5809b660cb3 · 2020-01-29T10:41:12.000-03:00
Improved test vector assertions
Improved some types
diff --git a/src/core/crypto/KeyPair.ts b/src/core/crypto/KeyPair.ts
@@ -13,7 +13,6 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-import { NetworkType } from '../../model/blockchain/NetworkType';
 import { Convert as convert } from '../format';
 import { SignSchema } from './SignSchema';
 import * as Utility from './Utilities';
@@ -44,20 +43,20 @@ export class KeyPair {
      * @param {SignSchema} signSchema The Sign Schema. (KECCAK(NIS1) / SHA3(Catapult))
      * @returns {Uint8Array} The signature.
      */
-    public static sign = (keyPair, data: Uint8Array, signSchema: SignSchema) => {
+    public static sign = (keyPair, data: Uint8Array, signSchema: SignSchema): Uint8Array => {
         return Utility.catapult_crypto.sign(data, keyPair.publicKey, keyPair.privateKey,
                 Utility.catapult_hash.createHasher(64, signSchema));
     }
 
     /**
      * Verifies a signature.
-     * @param {module:crypto/keyPair~PublicKey} publicKey The public key to use for verification.
+     * @param {Uint8Array} publicKey The public key to use for verification.
      * @param {Uint8Array} data The data to verify.
      * @param {Uint8Array} signature The signature to verify.
      * @param {SignSchema} signSchema The Sign Schema. (KECCAK(NIS1) / SHA3(Catapult))
      * @returns {boolean} true if the signature is verifiable, false otherwise.
      */
-    public static verify = (publicKey, data: Uint8Array, signature: Uint8Array, signSchema: SignSchema) => {
+    public static verify = (publicKey: Uint8Array, data: Uint8Array, signature: Uint8Array, signSchema: SignSchema): boolean => {
         return Utility.catapult_crypto.verify(publicKey, data, signature, Utility.catapult_hash.createHasher(64, signSchema));
     }
 
@@ -66,7 +65,6 @@ export class KeyPair {
      * The shared key can be used for encrypted message passing between the two.
      * @param {module:crypto/keyPair~KeyPair} keyPair The key pair for which to create the shared key.
      * @param {Uint8Array} publicKey The public key for which to create the shared key.
-     * @param {Uint8Array} salt A salt that should be applied to the shared key.
      * @param {SignSchema} signSchema The Sign Schema. (KECCAK(NIS1) / SHA3(Catapult))
      * @returns {Uint8Array} The shared key.
      */
diff --git a/src/core/crypto/Utilities.ts b/src/core/crypto/Utilities.ts
@@ -18,6 +18,7 @@ import { RawArray as array } from '../format';
 import * as nacl from './nacl_catapult';
 import { SHA3Hasher as sha3Hasher } from './SHA3Hasher';
 import { SignSchema } from './SignSchema';
+
 export const CryptoJS = require('crypto-js');
 export const Key_Size = 32;
 export const Signature_Size = 64;
@@ -203,21 +204,26 @@ export const catapult_crypto = (() => {
             return 0 === c.crypto_verify_32(signature, 0, t, 0);
         },
 
-        deriveSharedKey: (sk, pk, hashfunc, signSchema: SignSchema) => {
+        deriveSharedKey: (privateKey: Uint8Array, publicKey: Uint8Array, hashfunc, signSchema: SignSchema): Uint8Array => {
+            const sharedSecret = catapult_crypto.deriveSharedSecret(privateKey, publicKey, hashfunc, signSchema);
+            const info = 'catapult';
+            const hash = 'SHA-256';
+            return hkdf(sharedSecret, 32, {salt: new Uint8Array(32), info, hash});
+        },
+
+        deriveSharedSecret: (privateKey: Uint8Array, publicKey: Uint8Array, hashfunc, signSchema: SignSchema): Uint8Array => {
             const c = nacl;
-            const d = prepareForScalarMult(sk, hashfunc, signSchema);
+            const d = prepareForScalarMult(privateKey, hashfunc, signSchema);
 
-            // sharedKey = pack(p = d (derived from sk) * q (derived from pk))
+            // sharedKey = pack(p = d (derived from privateKey) * q (derived from publicKey))
             const q = [c.gf(), c.gf(), c.gf(), c.gf()];
             const p = [c.gf(), c.gf(), c.gf(), c.gf()];
             const sharedSecret = new Uint8Array(Key_Size);
-            c.unpack(q, pk);
+
+            c.unpack(q, publicKey);
             c.scalarmult(p, q, d);
             c.pack(sharedSecret, p);
-            const info = 'catapult';
-            const hash = 'SHA-256';
-            const sharedKey = hkdf(sharedSecret, 32, {salt: new Uint8Array(32), info, hash});
-            return sharedKey;
+            return sharedSecret;
         },
     };
 })();
diff --git a/src/core/format/Convert.ts b/src/core/format/Convert.ts
@@ -86,7 +86,7 @@ export class Convert {
      * @param {Uint8Array} input A uint8 array.
      * @returns {string} A hex encoded string corresponding to the input.
      */
-    public static uint8ToHex = (input) => {
+    public static uint8ToHex = (input): string => {
         let s = '';
         for (const byte of input) {
             s += utilities.Nibble_To_Char_Map[byte >> 4];
diff --git a/test/core/crypto/hkdf.spec.ts b/test/core/crypto/hkdf.spec.ts
@@ -0,0 +1,30 @@
+/*
+ * Copyright 2020 NEM
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+import { expect } from 'chai';
+import { Convert } from '../../../src/core/format';
+
+const hkdf = require('futoin-hkdf');
+
+describe('hkdf', () => {
+    describe('Example tests', () => {
+        // This test is used to validate that values are the same in both java and ts implementation.
+        const sharedSecret = 'string-or-buffer';
+        const hash = 'SHA-256';
+        const info = 'catapult';
+        const sharedKey = hkdf(sharedSecret, 32, {salt: new Uint8Array(32), info, hash});
+        expect(Convert.uint8ToHex(sharedKey)).equal('E618ACB2558E1721492E4AE3BED3F4D86F26C2B0CE6AD939943A6A540855D23F');
+    });
+});
diff --git a/test/core/crypto/keyPair.spec.ts b/test/core/crypto/keyPair.spec.ts
@@ -13,11 +13,11 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-import {expect} from 'chai';
-import {Crypto, KeyPair, SHA3Hasher, SignSchema} from '../../../src/core/crypto';
+import { expect } from 'chai';
+import { Crypto, KeyPair, SHA3Hasher, SignSchema } from '../../../src/core/crypto';
+import * as Utility from '../../../src/core/crypto/Utilities';
 import { Convert } from '../../../src/core/format/Convert';
 import { NetworkType } from '../../../src/model/blockchain/NetworkType';
-import { Address } from '../../../src/model/account/Address';
 
 describe('key pair', () => {
     const randomKeyPair = () =>
@@ -605,12 +605,12 @@ describe('key pair', () => {
                 '63ABC887EAD7B80247244E0C58CB7689C313444F4924278DBEA72DDB3391F9DA',
             ];
 
-            const Nis1_Salt = [
-                '422c39df16aae42a74a5597d6ee2d59cfb4eeb6b3f26d98425b9163a03daa3b5',
-                'ad63ac08f9afc85eb0bf4f8881ca6eaa0215924c87aa2f137d56109bb76c6f98',
-                '96104f0a28f9cca40901c066cd435134662a3b053eb6c8df80ee0d05dc941963',
-                'd8f94a0bbb1de80aea17aab42e2ffb982e73fc49b649a318479e951e392d8728',
-                '3f8c969678a8abdbfb76866a142c284a6f01636c1c1607947436e0d2c30d5245',
+            const Expected_ScalarMulResult = [
+                'FEB242779628761122E9FB1718512025040C683D69B8105BA1F383D47578B29F',
+                '277FD55F1A54F57F3E5B408CACA560360BA75F67AB954FB4E27A7ADBCAAB6719',
+                '8B38A30824E322555A748A5BEB67FBE0E0F1BD2B51635549F1F19CDF76BA0E9A',
+                '9342380F112C70B17B7254EFCD3FCF6F4F1FF844C7790426BF6EDC4C800BD0A0',
+                'A5593308E182D6D86D633F18DF19D87FAA4EF447FD1904891600CEEF303FD591',
             ];
 
             const Expected_Derived_Key = [
@@ -629,10 +629,11 @@ describe('key pair', () => {
 
                 // Act:
                 const sharedKey = Convert.uint8ToHex(KeyPair.deriveSharedKey(keyPair, publicKey, nis1TestSignSchema));
+                const sharedSecret = Convert.uint8ToHex(Utility.catapult_crypto.deriveSharedSecret(keyPair.privateKey, publicKey, Utility.catapult_hash.func, nis1TestSignSchema));
 
                 // Assert:
-                const message = ` from ${Nis1_Private_Key[i]}`;
                 expect(sharedKey.toUpperCase()).to.deep.equal(Expected_Derived_Key[i].toUpperCase());
+                expect(sharedSecret.toUpperCase()).to.deep.equal(Expected_ScalarMulResult[i].toUpperCase());
             }
         });
     });
@@ -660,12 +661,12 @@ describe('key pair', () => {
                 '9896A394B035E0F18855B2F6EE934E20ABADBF6B65B26E0C9329C283C1A9F980',
             ];
 
-            const Salt = [
-                '422c39df16aae42a74a5597d6ee2d59cfb4eeb6b3f26d98425b9163a03daa3b5',
-                'ad63ac08f9afc85eb0bf4f8881ca6eaa0215924c87aa2f137d56109bb76c6f98',
-                '96104f0a28f9cca40901c066cd435134662a3b053eb6c8df80ee0d05dc941963',
-                'd8f94a0bbb1de80aea17aab42e2ffb982e73fc49b649a318479e951e392d8728',
-                '3f8c969678a8abdbfb76866a142c284a6f01636c1c1607947436e0d2c30d5245',
+            const Expected_ScalarMulResult = [
+                '4118C2B3058714A288A9E218B7E0F9CCAD74C2EC44884CABBE20A2A33DB1282F',
+                'DA4BFF3709E40B4299988806435819D3E8E90ADE435EAC086EE295E0ADC3E0BB',
+                '81B15312FA6A87285C883FF205BA7E7DB319DEA1E7A79D1F78B93E73A156AA64',
+                '100221B07AB55C3260A7B7F12CDA0A8FA97998664C6509661A2E51417AF9C998',
+                'EE74B025E7A304BD0D3F131EF1132D2C194568034B9A7DE93653327D6618215C',
             ];
 
             const Expected_Derived_Key = [
@@ -683,10 +684,11 @@ describe('key pair', () => {
 
                 // Act:
                 const sharedKey = Convert.uint8ToHex(KeyPair.deriveSharedKey(keyPair, publicKey, mijinTestSignSchema));
+                const sharedSecret = Convert.uint8ToHex(Utility.catapult_crypto.deriveSharedSecret(keyPair.privateKey, publicKey, Utility.catapult_hash.func, mijinTestSignSchema));
 
                 // Assert:
-                const message = ` from ${Private_Key[i]}`;
                 expect(sharedKey.toUpperCase()).to.deep.equal(Expected_Derived_Key[i].toUpperCase());
+                expect(sharedSecret.toUpperCase()).to.deep.equal(Expected_ScalarMulResult[i].toUpperCase());
             }
         });
     });
