feat: Legacy encrypt (current aries RFC 19), compatible with ACA-Py

[Moopli]

Implements legacy encrypter for compatibility with ACA-Py.

Closes #139

Signed-off-by: Filip Burlacu [email protected]

[codecov-io]

Codecov Report

Merging #292 into master will decrease coverage by 0.04%.
The diff coverage is 88.07%.

@@            Coverage Diff             @@
##           master     #292      +/-   ##
==========================================
- Coverage   88.75%   88.71%   -0.05%     
==========================================
  Files          39       42       +3     
  Lines        1975     2126     +151     
==========================================
+ Hits         1753     1886     +133     
- Misses        122      131       +9     
- Partials      100      109       +9

Impacted Files	Coverage Δ
pkg/didcomm/crypto/legacy/authcrypt/authcrypt.go	86.44% <86.44%> (ø)
pkg/didcomm/crypto/legacy/authcrypt/decrypt.go	87.5% <87.5%> (ø)
pkg/didcomm/crypto/legacy/authcrypt/encrypt.go	89.47% <89.47%> (ø)

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 58db8d1...ad1a464. Read the comment docs.

[fqutishat]

code coverage is low

[troyronda]

Did you raise an issue on aries-rfcs?

[Moopli]

The spec in question is being amended to a JWE format (that @Baha-sk is working on) anyway - perhaps we should request it be split to keep a spec for the legacy format for backwards-compatibility, and amend that.

[llorllale]

I'm concerned that most of the tests just consist of a) checking that there is no error, and b) the output is not empty.

It would be better if we tested actual results against expected, verifiable values.

[llorllale]

where is the comparison to ACA-Py's output?

[Moopli]

Randomness (for nonces, CEKs) keeps me from generating encrypted envelopes in ACA-Py to compare against my own output. Right now I generate test data which can be pasted into a python test script to verify using ACA-Py decrypt, but once I have decrypt implemented I can create test data in ACA-Py that can be part of test cases here, testing decrypt, and I can also have test cases for my encrypt against my decrypt.

In essence, verification of correctness needs to happen on the decrypt side. I could work on making encrypt take a Reader as parameter for the randomness source, with the wallet being relied on to submit a CSPRNG.

[Moopli]

My above concern should be solved now. You should soon see more tests like what you want to see.

[llorllale]

it would be good to compare the actual result to an expected value

[Moopli]

Now that I can run the crypter using a deterministic rand source, I have a few tests which do this. Got some ideas on more I can do though.

[Moopli]

I'm concerned that most of the tests just consist of a) checking that there is no error, and b) the output is not empty.

It would be better if we tested actual results against expected, verifiable values.

I just pushed fixes to most of what's been brought up, some improvements to test coverage, and I made the crypter deterministic, taking an RNG as a parameter - crypto/rand.Reader under production conditions, but can take a seeded RNG for tests. I verified with a test using an empty payload, and I'll add more tests that I can now do, with a deterministic crypter.

[Moopli]

@fqutishat every live code path is now exercised - only future regressions or cosmic rays will make errors happen in the few error cases that aren't tested.

[llorllale]

This method is unused

[Moopli]

It's used in tests, but I can replace it with direct access to the Crypter.

[llorllale]

PR way too big. Please don't do this again.