wallet-core/src/Keystore/AESParameters.cpp at 65a12763241029ea14b25cd181741c8e34e5be0b · trustwallet/wallet-core · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
// SPDX-License-Identifier: Apache-2.0
//
// Copyright © 2017 Trust Wallet.

#include "AESParameters.h"

#include "../HexCoding.h"

#include <sstream>
#include <TrezorCrypto/rand.h>

using namespace TW;

namespace {

Data generateIv(std::size_t blockSize = TW::Keystore::gBlockSize) {
    auto iv = Data(blockSize, 0);
    random_buffer(iv.data(), blockSize);
    return iv;
}

static TWStoredKeyEncryption getCipher(const std::string& cipher) {
    if (cipher == Keystore::gAes128Ctr) {
        return TWStoredKeyEncryption::TWStoredKeyEncryptionAes128Ctr;
    }
    if (cipher == Keystore::gAes192Ctr) {
        return TWStoredKeyEncryption::TWStoredKeyEncryptionAes192Ctr;
    }
    if (cipher == Keystore::gAes256Ctr) {
        return TWStoredKeyEncryption::TWStoredKeyEncryptionAes256Ctr;
    }

    std::stringstream ss;
    ss << "Unsupported cipher: " << cipher;
    throw std::invalid_argument(ss.str());
}

const std::unordered_map<TWStoredKeyEncryption, Keystore::AESParameters> gEncryptionRegistry{
    {TWStoredKeyEncryptionAes128Ctr, Keystore::AESParameters{.mKeyLength = Keystore::A128, .mCipher = Keystore::gAes128Ctr, .mCipherEncryption = TWStoredKeyEncryptionAes128Ctr, .iv{}}},
    {TWStoredKeyEncryptionAes192Ctr, Keystore::AESParameters{.mKeyLength = Keystore::A192, .mCipher = Keystore::gAes192Ctr, .mCipherEncryption = TWStoredKeyEncryptionAes192Ctr, .iv{}}},
    {TWStoredKeyEncryptionAes256Ctr, Keystore::AESParameters{.mKeyLength = Keystore::A256, .mCipher = Keystore::gAes256Ctr, .mCipherEncryption = TWStoredKeyEncryptionAes256Ctr, .iv{}}}
};
} // namespace

namespace TW::Keystore {

namespace CodingKeys {
static const auto iv = "iv";
} // namespace CodingKeys

std::string toString(AESValidationError error) {
    switch (error) {
    case AESValidationError::InvalidIV:
        return "IV must be 16 bytes long";
    default:
        return "Unknown error";
    }
}

/// Initializes `AESParameters` with a JSON object.
AESParameters AESParameters::AESParametersFromJson(const nlohmann::json& json, const std::string& cipher) {
    auto parameters = AESParameters::AESParametersFromEncryption(getCipher(cipher));
    parameters.iv = parse_hex(json[CodingKeys::iv].get<std::string>());
    return parameters;
}

/// Saves `this` as a JSON object.
nlohmann::json AESParameters::json() const {
    nlohmann::json j;
    j[CodingKeys::iv] = hex(iv);
    return j;
}

AESParameters AESParameters::AESParametersFromEncryption(TWStoredKeyEncryption encryption) {
    auto parameters = gEncryptionRegistry.at(encryption);
    // be sure to regenerate an iv.
    parameters.iv = generateIv();
    return parameters;
}

std::optional<AESValidationError> AESParameters::validate() const noexcept {
    if (iv.size() != static_cast<std::size_t>(mBlockSize)) {
        return AESValidationError::InvalidIV;
    }

    return {};
}

} // namespace TW::Keystore