Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Initial support for elliptical curves #915

Merged
merged 37 commits into from
Nov 19, 2019
Merged

Initial support for elliptical curves #915

merged 37 commits into from
Nov 19, 2019

Conversation

melowe
Copy link
Contributor

@melowe melowe commented Nov 1, 2019
edited by namtruong
Loading

  1. Refactored encryption and config modules to allow support for alternative encryptors to NACL.
  2. Modified test fixture not to assume NACL.
  3. Refactored key pair loading to facilitate injection of encryptor.
  4. Moved new keypair password generation out of config module as this is essentially handling cli command/actions into the config cli module.

Cli changes
tessera -updatepassword requires --encryptor.type=[NACL|EC] option
tessera -keygen requires --encryptor.type=[NACL|EC] option or {encryptor : {type:NACL or EC } defining in config
normal usage default to NACL for backward compatibility.

@melowe
Generate key pairs using encryptor rather than fixed values to
3a8a7bc 
enable tests for different encryptor implementations.
@melowe
ignore push test as fixtures are tricky to generate and this is covered
6c80eb7 
in our send scenerios. Add todo comments to failure scenerios documentating 
 the danger of false positives.
@melowe
Add initial AEC encryptor module, pending config integration.
088dc82
@melowe
Ensure that JACL encryptor is returned despite AEC being available in
03ec3eb 
classloader. Temporary measure until config changes for alternative 
encryptors is added. 

Conflicts:
	encryption/encryption-api/src/main/java/com/quorum/tessera/encryption/EncryptorFactory.java
@melowe
Move payload build to be inner class to control and tighten up creation
c75aea9 
logic. Mock payloads in test in code module reducing cross impacts 
of any changes to encoding logic. 

Conflicts:
	enclave/enclave-api/src/main/java/com/quorum/tessera/enclave/EnclaveImpl.java
	enclave/enclave-api/src/main/java/com/quorum/tessera/enclave/EncodedPayload.java
	enclave/enclave-api/src/main/java/com/quorum/tessera/enclave/EncodedPayloadBuilder.java
	enclave/enclave-api/src/main/java/com/quorum/tessera/enclave/PayloadEncoderImpl.java
	enclave/enclave-api/src/test/java/com/quorum/tessera/enclave/EnclaveTest.java
	enclave/enclave-api/src/test/java/com/quorum/tessera/enclave/PayloadEncoderTest.java
	enclave/enclave-jaxrs/src/test/java/com/quorum/tessera/enclave/rest/Fixtures.java
	tessera-core/src/test/java/com/quorum/tessera/transaction/ResendManagerTest.java
	tessera-sync/src/test/java/com/quorum/tessera/sync/Fixtures.java
@melowe
Add support for encryptor configuration.
812d318
@melowe
Move config properties into root package to stop moxy generating
6472d9c 
unwanted namespaces.
@melowe
Change type to enumeration and not string
e9c3f1a
@melowe
Add type property to factories and filter on that. Allow optional
8083f5a 
injection of properties as map for custom configuration when creating 
encryptors. 

Conflicts:
	encryption/encryption-api/src/main/java/com/quorum/tessera/encryption/EncryptorFactory.java
	encryption/encryption-api/src/test/java/com/quorum/tessera/encryption/MockEncryptorFactory.java
	encryption/encryption-jnacl/src/main/java/com/quorum/tessera/nacl/jnacl/JnaclFactory.java
	encryption/encryption-kalium/src/main/java/com/quorum/tessera/nacl/kalium/KaliumFactory.java
@melowe
All code changes required to add alternative encryptor implementations,
d315079 
specifically elliptical curves. Changed test fixtures across project not to
assume nacl. 

Conflicts:
	config-migration/src/main/java/com/quorum/tessera/config/builder/ConfigBuilder.java
	config/src/main/java/com/quorum/tessera/config/keypairs/InlineKeypair.java
	config/src/main/java/com/quorum/tessera/config/keys/KeyEncryptorFactory.java
	enclave/enclave-api/src/main/java/com/quorum/tessera/enclave/EnclaveFactory.java
	encryption/encryption-api/src/test/java/com/quorum/tessera/encryption/EncryptorFactoryTest.java
	key-generation/src/main/java/com/quorum/tessera/key/generation/DefaultKeyGeneratorFactory.java
	key-generation/src/main/java/com/quorum/tessera/key/generation/FileKeyGenerator.java
	tests/acceptance-test/pom.xml
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/P2pTestSuite.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/cli/keygen/FileKeygenSteps.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/grpc/GrpcSuite.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/rest/RestSuite.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/rest/RestSuiteSimple.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/rest/SendWithRemoteEnclaveReconnectIT.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/rest/StressRestSuite.java
	tests/acceptance-test/src/test/java/com/quorum/tessera/test/ws/RestSuiteP2pWebsocketH2.java
	tests/acceptance-test/src/test/java/config/ConfigBuilder.java
	tests/acceptance-test/src/test/java/suite/ExecutionContext.java
	tests/acceptance-test/src/test/java/suite/ProcessConfig.java
	tests/acceptance-test/src/test/java/suite/ProcessConfiguration.java
	tests/acceptance-test/src/test/java/suite/TestSuite.java
@melowe
remove commented code
3bc9717
@melowe
Rename aec to ec
c138411
@melowe
avoid null pointer
0d1c323
@melowe
Reapplied changes made in initial feature/encryption_alternative_curves
60d28a1 
 branch.
@codecov-io
Copy link

codecov-io commented Nov 1, 2019
edited
Loading

Codecov Report

Merging #915 into master will decrease coverage by 0.02%.
The diff coverage is 99.26%.

Impacted file tree graph

@@             Coverage Diff              @@
##             master     #915      +/-   ##
============================================
- Coverage     99.36%   99.33%   -0.03%     
- Complexity     2097     2159      +62     
============================================
  Files           319      327       +8     
  Lines          5792     6053     +261     
  Branches        310      333      +23     
============================================
+ Hits           5755     6013     +258     
  Misses            5        5              
- Partials         32       35       +3
Impacted Files Coverage Δ Complexity Δ
...main/java/com/quorum/tessera/encryption/Nonce.java 100% <ø> (ø) 7 <0> (?)
.../java/com/quorum/tessera/encryption/Encryptor.java 100% <ø> (ø) 3 <0> (?)
.../quorum/tessera/encryption/EncryptorException.java 100% <ø> (ø) 1 <0> (?)
...m/quorum/tessera/data/EncryptedRawTransaction.java 96.77% <ø> (ø) 18 <0> (ø) ⬇️
.../java/com/quorum/tessera/config/ConfigFactory.java 100% <ø> (ø) 1 <0> (ø) ⬇️
.../quorum/tessera/enclave/RawTransactionBuilder.java 100% <ø> (ø) 6 <0> (ø) ⬇️
...um/tessera/key/generation/KeyGeneratorFactory.java 100% <ø> (ø) 1 <0> (ø) ⬇️
...ava/com/quorum/tessera/config/ConfigException.java 100% <ø> (ø) 1 <0> (ø) ⬇️
...va/com/quorum/tessera/encryption/KeyException.java 100% <ø> (ø) 1 <0> (?)
...va/com/quorum/tessera/nacl/jnacl/JnaclFactory.java 100% <100%> (ø) 4 <2> (+1) ⬆️
... and 53 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 73bd354...ee58618. Read the comment docs.

@melowe
Copy link
Contributor Author

melowe commented Nov 4, 2019

KeyPair config requires refactoring .

@melowe melowe closed this Nov 4, 2019
melowe and others added 6 commits November 5, 2019 12:00
@melowe
Dont provide default encrptor config intenally. Require that config
0ee1c90 
has config defined.
@melowe
Refactor config processing .
533db80 
Move password file generation out of config factory.
@melowe
Remove catch block used for debugging
c1159a2
@melowe
explicitly define passwords list as transient to prevent it
5f74fea 
being marshalled.
@melowe
Don't store passwords to file system prefer to store in password list
2ee0fbe 
to be consumed by password resolver. Add tests to ensure that implicit
protocol using absence or presence of passwords or passwordFile elements
are still working as intended.
@namtruong
Inject the encryptor into FileSystemKeyPair instead of InlineKeyPair
349fe62 
Fix some acceptance tests
@melowe melowe reopened this Nov 7, 2019
@melowe melowe closed this Nov 8, 2019
@melowe melowe reopened this Nov 8, 2019
@melowe melowe marked this pull request as ready for review November 8, 2019 12:13
@melowe
Default encryptor type to NACL. Ensure that one of configfile, uddate…
c5e8921 
…password

or keygen is defined on Cli.
@melowe
Set JSON_REDUCE_ANY_ARRAYS on marshaller to stop map marshal returning
ee58618 
an array of values. Add tests for marshal and unmarshal. Ensure that
w3c element is also handled in xml adapter as unmarhsal receives a list 
of dom elements rather than jaxb elements.
@melowe melowe merged commit 84f0c34 into master Nov 19, 2019
@melowe melowe deleted the encryption_alt_curves branch November 19, 2019 10:40
@chris-j-h chris-j-h mentioned this pull request Dec 2, 2019
Closed
@Krish1979 Krish1979 added 0.10.2 0.10.2 feature User features labels Dec 5, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@namtruong namtruong namtruong approved these changes

@chris-j-h chris-j-h Awaiting requested review from chris-j-h chris-j-h is a code owner

@nicolae-leonte-go nicolae-leonte-go Awaiting requested review from nicolae-leonte-go

@prd-fox prd-fox Awaiting requested review from prd-fox

@SatpalSandhu61 SatpalSandhu61 Awaiting requested review from SatpalSandhu61

Assignees
No one assigned
Labels
0.10.2 0.10.2 feature User features
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@melowe @codecov-io @namtruong @Krish1979