// Copyright 2015-2018 Parity Technologies (UK) Ltd. // This file is part of Parity. // Parity is free software: you can redistribute it and/or modify // it under the terms of the GNU General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // Parity is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU General Public License for more details. // You should have received a copy of the GNU General Public License // along with Parity. If not, see . use std::sync::Arc; use dir::Directories; use ethereum_types::Address; use ethkey::Password; use params::{AccountsConfig, SpecType}; #[cfg(not(feature = "accounts"))] mod accounts { use super::*; /// Dummy AccountProvider pub struct AccountProvider; impl ::ethcore::miner::LocalAccounts for AccountProvider { fn is_local(&self, _address: &Address) -> bool { false } } pub fn prepare_account_provider( _spec: &SpecType, _dirs: &Directories, _data_dir: &str, _cfg: AccountsConfig, _passwords: &[Password], ) -> Result { warn!("Note: Your instance of Parity Ethereum is running without account support. Some CLI options are ignored."); Ok(AccountProvider) } pub fn miner_local_accounts(_: Arc) -> AccountProvider { AccountProvider } pub fn miner_author( _spec: &SpecType, _dirs: &Directories, _account_provider: &Arc, _engine_signer: Address, _passwords: &[Password], ) -> Result, String> { Ok(None) } pub fn private_tx_signer( _account_provider: Arc, _passwords: &[Password], ) -> Result, String> { Ok(Arc::new(::ethcore_private_tx::DummySigner)) } pub fn accounts_list( _account_provider: Arc, ) -> Arc Vec
+ Send + Sync> { Arc::new(|| vec![]) } } #[cfg(feature = "accounts")] mod accounts { use super::*; use upgrade::upgrade_key_location; pub use accounts::AccountProvider; /// Pops along with error messages when a password is missing or invalid. const VERIFY_PASSWORD_HINT: &str = "Make sure valid password is present in files passed using `--password` or in the configuration file."; /// Initialize account provider pub fn prepare_account_provider( spec: &SpecType, dirs: &Directories, data_dir: &str, cfg: AccountsConfig, passwords: &[Password], ) -> Result { use accounts::AccountProviderSettings; use ethstore::{accounts_dir::RootDiskDirectory, EthStore}; let path = dirs.keys_path(data_dir); upgrade_key_location(&dirs.legacy_keys_path(cfg.testnet), &path); let dir = Box::new( RootDiskDirectory::create(&path) .map_err(|e| format!("Could not open keys directory: {}", e))?, ); let account_settings = AccountProviderSettings { enable_hardware_wallets: cfg.enable_hardware_wallets, hardware_wallet_classic_key: spec == &SpecType::Classic, unlock_keep_secret: cfg.enable_fast_unlock, blacklisted_accounts: match *spec { SpecType::Morden | SpecType::Mordor | SpecType::Ropsten | SpecType::Kovan | SpecType::Goerli | SpecType::Kotti | SpecType::Sokol | SpecType::Dev => vec![], _ => vec!["00a329c0648769a73afac7f9381e08fb43dbea72".into()], }, }; let ethstore = EthStore::open_with_iterations(dir, cfg.iterations) .map_err(|e| format!("Could not open keys directory: {}", e))?; if cfg.refresh_time > 0 { ethstore.set_refresh_time(::std::time::Duration::from_secs(cfg.refresh_time)); } let account_provider = AccountProvider::new(Box::new(ethstore), account_settings); // Add development account if running dev chain: if let SpecType::Dev = *spec { insert_dev_account(&account_provider); } for a in cfg.unlocked_accounts { // Check if the account exists if !account_provider.has_account(a) { return Err(format!( "Account {} not found for the current chain. {}", a, build_create_account_hint(spec, &dirs.keys) )); } // Check if any passwords have been read from the password file(s) if passwords.is_empty() { return Err(format!( "No password found to unlock account {}. {}", a, VERIFY_PASSWORD_HINT )); } if !passwords.iter().any(|p| { account_provider .unlock_account_permanently(a, (*p).clone()) .is_ok() }) { return Err(format!( "No valid password to unlock account {}. {}", a, VERIFY_PASSWORD_HINT )); } } Ok(account_provider) } pub struct LocalAccounts(Arc); impl ::ethcore::miner::LocalAccounts for LocalAccounts { fn is_local(&self, address: &Address) -> bool { self.0.has_account(*address) } } pub fn miner_local_accounts(account_provider: Arc) -> LocalAccounts { LocalAccounts(account_provider) } pub fn miner_author( spec: &SpecType, dirs: &Directories, account_provider: &Arc, engine_signer: Address, passwords: &[Password], ) -> Result, String> { use ethcore::engines::EngineSigner; // Check if engine signer exists if !account_provider.has_account(engine_signer) { return Err(format!( "Consensus signer account not found for the current chain. {}", build_create_account_hint(spec, &dirs.keys) )); } // Check if any passwords have been read from the password file(s) if passwords.is_empty() { return Err(format!( "No password found for the consensus signer {}. {}", engine_signer, VERIFY_PASSWORD_HINT )); } let mut author = None; for password in passwords { let signer = parity_rpc::signer::EngineSigner::new( account_provider.clone(), engine_signer, password.clone(), ); if signer.sign(Default::default()).is_ok() { author = Some(::ethcore::miner::Author::Sealer(Box::new(signer))); } } if author.is_none() { return Err(format!( "No valid password for the consensus signer {}. {}", engine_signer, VERIFY_PASSWORD_HINT )); } Ok(author) } mod private_tx { use super::*; use ethcore_private_tx::Error; use ethkey::{Message, Signature}; pub struct AccountSigner { pub accounts: Arc, pub passwords: Vec, } impl ::ethcore_private_tx::Signer for AccountSigner { fn decrypt( &self, account: Address, shared_mac: &[u8], payload: &[u8], ) -> Result, Error> { let password = self.find_account_password(&account); Ok(self .accounts .decrypt(account, password, shared_mac, payload) .map_err(|e| e.to_string())?) } fn sign(&self, account: Address, hash: Message) -> Result { let password = self.find_account_password(&account); Ok(self .accounts .sign(account, password, hash) .map_err(|e| e.to_string())?) } } impl AccountSigner { /// Try to unlock account using stored password, return found password if any fn find_account_password(&self, account: &Address) -> Option { for password in &self.passwords { if let Ok(true) = self.accounts.test_password(account, password) { return Some(password.clone()); } } None } } } pub fn private_tx_signer( accounts: Arc, passwords: &[Password], ) -> Result, String> { Ok(Arc::new(self::private_tx::AccountSigner { accounts, passwords: passwords.to_vec(), })) } pub fn accounts_list( account_provider: Arc, ) -> Arc Vec
+ Send + Sync> { Arc::new(move || account_provider.accounts().unwrap_or_default()) } fn insert_dev_account(account_provider: &AccountProvider) { let secret: ethkey::Secret = "4d5db4107d237df6a3d58ee5f70ae63d73d7658d4026f2eefd2f204c81682cb7".into(); let dev_account = ethkey::KeyPair::from_secret(secret.clone()) .expect("Valid secret produces valid key;qed"); if !account_provider.has_account(dev_account.address()) { match account_provider.insert_account(secret, &Password::from(String::new())) { Err(e) => warn!("Unable to add development account: {}", e), Ok(address) => { let _ = account_provider .set_account_name(address.clone(), "Development Account".into()); let _ = account_provider.set_account_meta( address, ::serde_json::to_string( &(vec![ ( "description", "Never use this account outside of development chain!", ), ("passwordHint", "Password is empty string"), ] .into_iter() .collect::<::std::collections::HashMap<_, _>>()), ) .expect("Serialization of hashmap does not fail."), ); } } } } // Construct an error `String` with an adaptive hint on how to create an account. fn build_create_account_hint(spec: &SpecType, keys: &str) -> String { format!("You can create an account via RPC, UI or `parity account new --chain {} --keys-path {}`.", spec, keys) } } pub use self::accounts::{ accounts_list, miner_author, miner_local_accounts, prepare_account_provider, private_tx_signer, AccountProvider, };