GitBross 首頁 探索 說明
註冊 登入
sol_Bo8des9o
/
openzeppelin-contracts
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: 0f578d247c
分支列表 標籤列表
openzeppelin-co...
/
test
/
utils
/
cryptography
/
WebAuthn.t.sol

WebAuthn.t.sol 9.7 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297 
  1. // SPDX-License-Identifier: MIT
    2. 

  2. 

  3. pragma solidity ^0.8.20;
    4. 

  4. 

  5. import {Test} from "forge-std/Test.sol";
    6. 

  6. import {P256} from "@openzeppelin/contracts/utils/cryptography/P256.sol";
    7. 

  7. import {Math} from "@openzeppelin/contracts/utils/math/Math.sol";
    8. 

  8. import {Base64} from "@openzeppelin/contracts/utils/Base64.sol";
    9. 

  9. import {WebAuthn} from "@openzeppelin/contracts/utils/cryptography/WebAuthn.sol";
    10. 

  10. 

  11. contract WebAuthnTest is Test {
    12. 

  12.     /// forge-config: default.fuzz.runs = 512
    13. 

  13.     function testVerify(bytes memory challenge, uint256 seed) public view {
    14. 

  14.         assertTrue(
    15. 

  15.             _runVerify(
    16. 

  16.                 seed,
    17. 

  17.                 challenge,
    18. 

  18.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP),
    19. 

  19.                 _encodeClientDataJSON(challenge),
    20. 

  20.                 false
    21. 

  21.             )
    22. 

  22.         );
    23. 

  23.     }
    24. 

  24. 

  25.     /// forge-config: default.fuzz.runs = 512
    26. 

  26.     function testVerifyInvalidType(bytes memory challenge, uint256 seed) public view {
    27. 

  27.         assertFalse(
    28. 

  28.             _runVerify(
    29. 

  29.                 seed,
    30. 

  30.                 challenge,
    31. 

  31.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP | WebAuthn.AUTH_DATA_FLAGS_UV),
    32. 

  32.                 // solhint-disable-next-line quotes
    33. 

  33.                 string.concat('{"type":"webauthn.create","challenge":"', Base64.encodeURL(challenge), '"}'),
    34. 

  34.                 false
    35. 

  35.             )
    36. 

  36.         );
    37. 

  37.     }
    38. 

  38. 

  39.     /// forge-config: default.fuzz.runs = 512
    40. 

  40.     function testVerifyInvalidChallenge(bytes memory challenge, uint256 seed) public view {
    41. 

  41.         assertFalse(
    42. 

  42.             _runVerify(
    43. 

  43.                 seed,
    44. 

  44.                 challenge,
    45. 

  45.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP | WebAuthn.AUTH_DATA_FLAGS_UV),
    46. 

  46.                 _encodeClientDataJSON(bytes("invalid_challenge")),
    47. 

  47.                 false
    48. 

  48.             )
    49. 

  49.         );
    50. 

  50.     }
    51. 

  51. 

  52.     /// forge-config: default.fuzz.runs = 512
    53. 

  53.     function testVerifyFlagsUP(bytes memory challenge, uint256 seed) public view {
    54. 

  54.         // UP = false: FAIL
    55. 

  55.         assertFalse(
    56. 

  56.             _runVerify(
    57. 

  57.                 seed,
    58. 

  58.                 challenge,
    59. 

  59.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UV),
    60. 

  60.                 _encodeClientDataJSON(challenge),
    61. 

  61.                 false
    62. 

  62.             )
    63. 

  63.         );
    64. 

  64.     }
    65. 

  65. 

  66.     /// forge-config: default.fuzz.runs = 512
    67. 

  67.     function testVerifyFlagsUV(bytes memory challenge, uint256 seed) public view {
    68. 

  68.         // UV = false, requireUV = false: SUCCESS
    69. 

  69.         assertTrue(
    70. 

  70.             _runVerify(
    71. 

  71.                 seed,
    72. 

  72.                 challenge,
    73. 

  73.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP),
    74. 

  74.                 _encodeClientDataJSON(challenge),
    75. 

  75.                 false
    76. 

  76.             )
    77. 

  77.         );
    78. 

  78.         // UV = false, requireUV = true: FAIL
    79. 

  79.         assertFalse(
    80. 

  80.             _runVerify(
    81. 

  81.                 seed,
    82. 

  82.                 challenge,
    83. 

  83.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP),
    84. 

  84.                 _encodeClientDataJSON(challenge),
    85. 

  85.                 true
    86. 

  86.             )
    87. 

  87.         );
    88. 

  88.         // UV = true, requireUV = true: SUCCESS
    89. 

  89.         assertTrue(
    90. 

  90.             _runVerify(
    91. 

  91.                 seed,
    92. 

  92.                 challenge,
    93. 

  93.                 _encodeAuthenticatorData(WebAuthn.AUTH_DATA_FLAGS_UP | WebAuthn.AUTH_DATA_FLAGS_UV),
    94. 

  94.                 _encodeClientDataJSON(challenge),
    95. 

  95.                 true
    96. 

  96.             )
    97. 

  97.         );
    98. 

  98.     }
    99. 

  99. 

  100.     /// forge-config: default.fuzz.runs = 512
    101. 

  101.     function testVerifyFlagsBEBS(bytes memory challenge, uint256 seed) public view {
    102. 

  102.         // BS = true, BE = false: FAIL
    103. 

  103.         assertFalse(
    104. 

  104.             _runVerify(
    105. 

  105.                 seed,
    106. 

  106.                 challenge,
    107. 

  107.                 _encodeAuthenticatorData(
    108. 

  108.                     WebAuthn.AUTH_DATA_FLAGS_UP | WebAuthn.AUTH_DATA_FLAGS_UV | WebAuthn.AUTH_DATA_FLAGS_BS
    109. 

  109.                 ),
    110. 

  110.                 _encodeClientDataJSON(challenge),
    111. 

  111.                 false
    112. 

  112.             )
    113. 

  113.         );
    114. 

  114.         // BS = false, BE = true: SUCCESS
    115. 

  115.         assertTrue(
    116. 

  116.             _runVerify(
    117. 

  117.                 seed,
    118. 

  118.                 challenge,
    119. 

  119.                 _encodeAuthenticatorData(
    120. 

  120.                     WebAuthn.AUTH_DATA_FLAGS_UP | WebAuthn.AUTH_DATA_FLAGS_UV | WebAuthn.AUTH_DATA_FLAGS_BE
    121. 

  121.                 ),
    122. 

  122.                 _encodeClientDataJSON(challenge),
    123. 

  123.                 false
    124. 

  124.             )
    125. 

  125.         );
    126. 

  126.         // BS = true, BE = true: SUCCESS
    127. 

  127.         assertTrue(
    128. 

  128.             _runVerify(
    129. 

  129.                 seed,
    130. 

  130.                 challenge,
    131. 

  131.                 _encodeAuthenticatorData(
    132. 

  132.                     WebAuthn.AUTH_DATA_FLAGS_UP |
    133. 

  133.                         WebAuthn.AUTH_DATA_FLAGS_UV |
    134. 

  134.                         WebAuthn.AUTH_DATA_FLAGS_BE |
    135. 

  135.                         WebAuthn.AUTH_DATA_FLAGS_BS
    136. 

  136.                 ),
    137. 

  137.                 _encodeClientDataJSON(challenge),
    138. 

  138.                 false
    139. 

  139.             )
    140. 

  140.         );
    141. 

  141.     }
    142. 

  142. 

  143.     function _runVerify(
    144. 

  144.         uint256 seed,
    145. 

  145.         bytes memory challenge,
    146. 

  146.         bytes memory authenticatorData,
    147. 

  147.         string memory clientDataJSON,
    148. 

  148.         bool requireUV
    149. 

  149.     ) private view returns (bool) {
    150. 

  150.         // Generate private key and get public key
    151. 

  151.         uint256 privateKey = bound(seed, 1, P256.N - 1);
    152. 

  152.         (uint256 x, uint256 y) = vm.publicKeyP256(privateKey);
    153. 

  153. 

  154.         // Sign the message
    155. 

  155.         bytes32 messageHash = sha256(abi.encodePacked(authenticatorData, sha256(bytes(clientDataJSON))));
    156. 

  156.         (bytes32 r, bytes32 s) = vm.signP256(privateKey, messageHash);
    157. 

  157. 

  158.         // Verify the signature
    159. 

  159.         return
    160. 

  160.             WebAuthn.verify(
    161. 

  161.                 challenge,
    162. 

  162.                 WebAuthn.WebAuthnAuth({
    163. 

  163.                     authenticatorData: authenticatorData,
    164. 

  164.                     clientDataJSON: clientDataJSON,
    165. 

  165.                     challengeIndex: 23, // Position of challenge in clientDataJSON
    166. 

  166.                     typeIndex: 1, // Position of type in clientDataJSON
    167. 

  167.                     r: r,
    168. 

  168.                     s: bytes32(Math.min(uint256(s), P256.N - uint256(s)))
    169. 

  169.                 }),
    170. 

  170.                 bytes32(x),
    171. 

  171.                 bytes32(y),
    172. 

  172.                 requireUV
    173. 

  173.             );
    174. 

  174.     }
    175. 

  175. 

  176.     function testTryDecodeAuthValid(
    177. 

  177.         bytes32 r,
    178. 

  178.         bytes32 s,
    179. 

  179.         uint256 challengeIndex,
    180. 

  180.         uint256 typeIndex,
    181. 

  181.         bytes memory authenticatorData,
    182. 

  182.         string memory clientDataJSON
    183. 

  183.     ) public view {
    184. 

  184.         (bool success, WebAuthn.WebAuthnAuth memory auth) = this.tryDecodeAuth(
    185. 

  185.             abi.encode(r, s, challengeIndex, typeIndex, authenticatorData, clientDataJSON)
    186. 

  186.         );
    187. 

  187.         assertTrue(success);
    188. 

  188.         assertEq(auth.r, r);
    189. 

  189.         assertEq(auth.s, s);
    190. 

  190.         assertEq(auth.challengeIndex, challengeIndex);
    191. 

  191.         assertEq(auth.typeIndex, typeIndex);
    192. 

  192.         assertEq(auth.authenticatorData, authenticatorData);
    193. 

  193.         assertEq(auth.clientDataJSON, clientDataJSON);
    194. 

  194.     }
    195. 

  195. 

  196.     function testTryDecodeAuthInvalid() public view {
    197. 

  197.         bytes32 r = keccak256("r");
    198. 

  198.         bytes32 s = keccak256("s");
    199. 

  199.         uint256 challengeIndex = 17;
    200. 

  200.         uint256 typeIndex = 1;
    201. 

  201. 

  202.         // too short
    203. 

  203.         assertFalse(this.tryDecodeAuthDrop(abi.encodePacked(r, s, challengeIndex, typeIndex)));
    204. 

  204. 

  205.         // offset out of bound
    206. 

  206.         assertFalse(
    207. 

  207.             this.tryDecodeAuthDrop(abi.encodePacked(r, s, challengeIndex, typeIndex, uint256(0xc0), uint256(0)))
    208. 

  208.         );
    209. 

  209.         assertFalse(
    210. 

  210.             this.tryDecodeAuthDrop(abi.encodePacked(r, s, challengeIndex, typeIndex, uint256(0), uint256(0xc0)))
    211. 

  211.         );
    212. 

  212. 

  213.         // minimal valid (bytes and string both length 0, at the same position)
    214. 

  214.         assertTrue(
    215. 

  215.             this.tryDecodeAuthDrop(
    216. 

  216.                 abi.encodePacked(r, s, challengeIndex, typeIndex, uint256(0xc0), uint256(0xc0), uint256(0))
    217. 

  217.             )
    218. 

  218.         );
    219. 

  219. 

  220.         // length out of bound
    221. 

  221.         assertTrue(
    222. 

  222.             this.tryDecodeAuthDrop(
    223. 

  223.                 abi.encodePacked(
    224. 

  224.                     r,
    225. 

  225.                     s,
    226. 

  226.                     challengeIndex,
    227. 

  227.                     typeIndex,
    228. 

  228.                     uint256(0xc0),
    229. 

  229.                     uint256(0xe0),
    230. 

  230.                     uint256(0x20),
    231. 

  231.                     uint256(0)
    232. 

  232.                 )
    233. 

  233.             )
    234. 

  234.         );
    235. 

  235.         assertFalse(
    236. 

  236.             this.tryDecodeAuthDrop(
    237. 

  237.                 abi.encodePacked(
    238. 

  238.                     r,
    239. 

  239.                     s,
    240. 

  240.                     challengeIndex,
    241. 

  241.                     typeIndex,
    242. 

  242.                     uint256(0xc0),
    243. 

  243.                     uint256(0xe0),
    244. 

  244.                     uint256(0x21),
    245. 

  245.                     uint256(0)
    246. 

  246.                 )
    247. 

  247.             )
    248. 

  248.         );
    249. 

  249.         assertTrue(
    250. 

  250.             this.tryDecodeAuthDrop(
    251. 

  251.                 abi.encodePacked(
    252. 

  252.                     r,
    253. 

  253.                     s,
    254. 

  254.                     challengeIndex,
    255. 

  255.                     typeIndex,
    256. 

  256.                     uint256(0xc0),
    257. 

  257.                     uint256(0xe0),
    258. 

  258.                     uint256(0),
    259. 

  259.                     uint256(0x00)
    260. 

  260.                 )
    261. 

  261.             )
    262. 

  262.         );
    263. 

  263.         assertFalse(
    264. 

  264.             this.tryDecodeAuthDrop(
    265. 

  265.                 abi.encodePacked(
    266. 

  266.                     r,
    267. 

  267.                     s,
    268. 

  268.                     challengeIndex,
    269. 

  269.                     typeIndex,
    270. 

  270.                     uint256(0xc0),
    271. 

  271.                     uint256(0xe0),
    272. 

  272.                     uint256(0),
    273. 

  273.                     uint256(0x01)
    274. 

  274.                 )
    275. 

  275.             )
    276. 

  276.         );
    277. 

  277.     }
    278. 

  278. 

  279.     function tryDecodeAuth(
    280. 

  280.         bytes calldata encoded
    281. 

  281.     ) public pure returns (bool success, WebAuthn.WebAuthnAuth calldata auth) {
    282. 

  282.         (success, auth) = WebAuthn.tryDecodeAuth(encoded);
    283. 

  283.     }
    284. 

  284. 

  285.     function tryDecodeAuthDrop(bytes calldata encoded) public pure returns (bool success) {
    286. 

  286.         (success, ) = WebAuthn.tryDecodeAuth(encoded);
    287. 

  287.     }
    288. 

  288. 

  289.     function _encodeAuthenticatorData(bytes1 flags) private pure returns (bytes memory) {
    290. 

  290.         return abi.encodePacked(bytes32(0), flags, bytes4(0));
    291. 

  291.     }
    292. 

  292. 

  293.     function _encodeClientDataJSON(bytes memory challenge) private pure returns (string memory) {
    294. 

  294.         // solhint-disable-next-line quotes
    295. 

  295.         return string.concat('{"type":"webauthn.get","challenge":"', Base64.encodeURL(challenge), '"}');
    296. 

  296.     }
    297. 

  297. }
    298.