Update to the derivation function and more test vectors

ibrajer · ibrajer · commit cac6685bdfaf · 2026-01-15T21:05:50.000+01:00
diff --git a/pkg/workflows/utils.go b/pkg/workflows/utils.go
@@ -2,6 +2,7 @@ package workflows
 
 import (
 	"crypto/sha256"
+	"encoding/binary"
 	"encoding/hex"
 	"strings"
 
@@ -75,50 +76,63 @@ func GenerateWorkflowID(owner []byte, name string, workflow []byte, config []byt
 	return sha, nil
 }
 
+// CREATE2-style address derivation with domain separation and collision resistance:
+// ownerAddress = keccak256(0xff ++ bytes.repeat(0x0, 84) ++
+// "Chainlink Runtime Environment GenerateWorkflowOwnerAddress\x00" ++
+// len(prefix).to_bytes(8, byteorder='big') ++ prefix ++
+// len(ownerKey).to_bytes(8, byteorder='big') ++ ownerKey)[12:]
 func GenerateWorkflowOwnerAddress(prefix string, ownerKey string) ([]byte, error) {
-	// CREATE2 proposed in EIP-1014:
-	// keccak256(0xff ++ address ++ salt ++ keccak256(init_code))[12:]
-	// CREATE2-style address derivation inspired by the above:
-	// ownerAddress = keccak256(0xff ++ bytes.repeat(0x0, 84) ++ keccak256(prefix ++ ownerKey))[12:]
-
-	outerHash := sha3.NewLegacyKeccak256()
+	hash := sha3.NewLegacyKeccak256()
 
 	// Write 0xff byte
-	_, err := outerHash.Write([]byte{0xff})
+	_, err := hash.Write([]byte{0xff})
 	if err != nil {
 		return nil, err
 	}
 
 	// Write 84 zero bytes because preimage for the final hashing round is always exactly 85 bytes
 	zeroBytes := make([]byte, 84)
-	_, err = outerHash.Write(zeroBytes)
+	_, err = hash.Write(zeroBytes)
+	if err != nil {
+		return nil, err
+	}
+
+	// Write domain separator string
+	domainSeparator := "Chainlink Runtime Environment GenerateWorkflowOwnerAddress\x00"
+	_, err = hash.Write([]byte(domainSeparator))
 	if err != nil {
 		return nil, err
 	}
 
-	// Creation of the nested hash
-	nestedHash := sha3.NewLegacyKeccak256()
+	// Write length-prefixed prefix as big endian
+	prefixLen := uint64(len(prefix))
+	err = binary.Write(hash, binary.BigEndian, prefixLen)
+	if err != nil {
+		return nil, err
+	}
 
 	// Write prefix
-	_, err = nestedHash.Write([]byte(prefix))
+	_, err = hash.Write([]byte(prefix))
 	if err != nil {
 		return nil, err
 	}
 
-	// Write ownerKey
-	_, err = nestedHash.Write([]byte(ownerKey))
+	// Write length-prefixed ownerKey as big endian
+	ownerKeyLen := uint64(len(ownerKey))
+	err = binary.Write(hash, binary.BigEndian, ownerKeyLen)
 	if err != nil {
 		return nil, err
 	}
 
-	// Write the nested hash within the outer hash
-	_, err = outerHash.Write(nestedHash.Sum(nil))
+	// Write ownerKey
+	_, err = hash.Write([]byte(ownerKey))
 	if err != nil {
 		return nil, err
 	}
 
-	// Return the last 20 bytes (EVM compatible address)
-	return outerHash.Sum(nil)[12:], nil
+	// Return the first 20 bytes (Ethereum address)
+	fullHash := hash.Sum(nil)
+	return fullHash[:20], nil
 }
 
 // HashTruncateName returns the SHA-256 hash of the workflow name truncated to the first 10 bytes.
diff --git a/pkg/workflows/utils_test.go b/pkg/workflows/utils_test.go
@@ -110,174 +110,163 @@ func TestNormalizeWorkflowName(t *testing.T) {
 	}
 }
 
-func Test_GenerateWorkflowOwnerAddress_DifferentInputsGenerateDifferentAddresses(t *testing.T) {
-	tests := []struct {
-		name        string
-		prefix1     string
-		ownerKey1   string
-		prefix2     string
-		ownerKey2   string
+func Test_GenerateWorkflowOwnerAddress_SameInputsGenerateSameAddress(t *testing.T) {
+	prefix := "test_registry"
+	ownerKey := "test_owner_123"
+
+	// Generate address multiple times
+	addr1, err := GenerateWorkflowOwnerAddress(prefix, ownerKey)
+	require.NoError(t, err, "Failed to generate first address")
+
+	addr2, err := GenerateWorkflowOwnerAddress(prefix, ownerKey)
+	require.NoError(t, err, "Failed to generate second address")
+
+	// Verify all addresses are identical
+	addr1Hex := hex.EncodeToString(addr1)
+	addr2Hex := hex.EncodeToString(addr2)
+
+	require.Equal(t, addr1Hex, addr2Hex, "Same inputs should generate same address")
+}
+
+func Test_GenerateWorkflowOwnerAddress_OtherTestVectors(t *testing.T) {
+	testVectors := []struct {
+		prefix      string
+		ownerKey    string
+		keccakInput string
+		keccakHash  string
+		ethAddress  string
 		description string
 	}{
 		{
-			name:        "different_prefix",
-			prefix1:     "registry_v1",
-			ownerKey1:   "owner123",
-			prefix2:     "registry_v2",
-			ownerKey2:   "owner123",
-			description: "Same ownerKey, different prefix",
+			prefix:      "",
+			ownerKey:    "",
+			ethAddress:  "0x41305062a5e522A01B7D9460E6744C879113C5dB",
+			description: "Empty prefix and ownerKey",
+		},
+		{
+			prefix:      "",
+			ownerKey:    "non_empty_owner_key",
+			ethAddress:  "0xa6b6C2C0D58bD45c83b89F60cae395F7f3c9A0D0",
+			description: "Empty prefix, non-empty ownerKey",
+		},
+		{
+			prefix:      "non_empty_prefix",
+			ownerKey:    "",
+			ethAddress:  "0x8Cb3243107cAD0D5584cD8b37393FE7f5200B920",
+			description: "Non-empty prefix, empty ownerKey",
+		},
+		{
+			prefix:      "x",
+			ownerKey:    "yz",
+			ethAddress:  "0xb2a39e39664A469bc1d1b5dB8592deda4E9410af",
+			description: "Collision test case 1: x + yz",
 		},
 		{
-			name:        "different_ownerKey",
-			prefix1:     "registry_v1",
-			ownerKey1:   "owner123",
-			prefix2:     "registry_v1",
-			ownerKey2:   "owner124",
-			description: "Same prefix, different ownerKey",
+			prefix:      "xy",
+			ownerKey:    "z",
+			ethAddress:  "0x561960c471b8B288284073457EB77175C49DA9cd",
+			description: "Collision test case 2: xy + z (should be different from x + yz)",
 		},
 		{
-			name:        "case_sensitive_prefix",
-			prefix1:     "Registry",
-			ownerKey1:   "owner123",
-			prefix2:     "registry",
-			ownerKey2:   "owner123",
-			description: "Case sensitive prefix difference",
+			prefix:      "org_123456789",
+			ownerKey:    "cre-storage-service",
+			ethAddress:  "0x95b028290D5E2aC912f0bA8e9E35931B90740608",
+			description: "Realistic org ID and service name",
 		},
 		{
-			name:        "case_sensitive_ownerKey",
-			prefix1:     "registry",
-			ownerKey1:   "Owner123",
-			prefix2:     "registry",
-			ownerKey2:   "owner123",
-			description: "Case sensitive ownerKey difference",
+			prefix:      "org_0x1234567890abcdef",
+			ownerKey:    "cre-storage-service",
+			ethAddress:  "0x102d1d8570F155D4C9AF463C7098B978fEaEDf1C",
+			description: "Hex-prefixed org ID",
 		},
 		{
-			name:        "single_char_difference_prefix",
-			prefix1:     "registrya",
-			ownerKey1:   "owner123",
-			prefix2:     "registryb",
-			ownerKey2:   "owner123",
-			description: "Single character difference in prefix",
+			prefix:      "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa",
+			ownerKey:    "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
+			ethAddress:  "0x31B1AfA30824ab78fF1c3f7b26ef6ce50D9c3221",
+			description: "Long repeating characters",
 		},
 		{
-			name:        "single_char_difference_ownerKey",
-			prefix1:     "registry",
-			ownerKey1:   "owner123a",
-			prefix2:     "registry",
-			ownerKey2:   "owner123b",
-			description: "Single character difference in ownerKey",
+			prefix:      "org_public_key",
+			ownerKey:    "0x02aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa",
+			ethAddress:  "0x9Ed0D44aB4B2FCC1B4C280105D641F668b81A6e9",
+			description: "Public key as ownerKey",
+		},
+		{
+			prefix:      "org@special#chars",
+			ownerKey:    "key$with%symbols",
+			ethAddress:  "0xAbF538FFffFAE8C139c0BF80e7cEC5c1596D0944",
+			description: "Special characters in both prefix and ownerKey",
 		},
 	}
 
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			// Generate first address
-			addr1, err := GenerateWorkflowOwnerAddress(tt.prefix1, tt.ownerKey1)
-			require.NoError(t, err, "Failed to generate first address")
+	for _, tv := range testVectors {
+		t.Run(tv.description, func(t *testing.T) {
+			addr, err := GenerateWorkflowOwnerAddress(tv.prefix, tv.ownerKey)
+			require.NoError(t, err, "Failed to generate address")
 
-			// Generate second address
-			addr2, err := GenerateWorkflowOwnerAddress(tt.prefix2, tt.ownerKey2)
-			require.NoError(t, err, "Failed to generate second address")
+			expectedAddr := tv.ethAddress
+			if expectedAddr[:2] == "0x" {
+				expectedAddr = expectedAddr[2:]
+			}
+			expectedAddr = strings.ToLower(expectedAddr)
+			actualAddr := hex.EncodeToString(addr)
 
-			// Verify addresses are different
-			require.NotEqual(t, hex.EncodeToString(addr1), hex.EncodeToString(addr2), "Addresses should not match")
+			require.Equal(t, expectedAddr, actualAddr, "Address mismatch")
 
-			// Verify addresses are 20 bytes (Ethereum address length)
-			require.Len(t, addr1, 20, "First address should be 20 bytes")
-			require.Len(t, addr2, 20, "Second address should be 20 bytes")
+			require.Len(t, addr, 20, "Address should be 20 bytes")
 		})
 	}
 }
 
-func Test_GenerateWorkflowOwnerAddress_SameInputsGenerateSameAddress(t *testing.T) {
-	prefix := "test_registry"
-	ownerKey := "test_owner_123"
-
-	// Generate address multiple times
-	addr1, err := GenerateWorkflowOwnerAddress(prefix, ownerKey)
-	require.NoError(t, err, "Failed to generate first address")
-
-	addr2, err := GenerateWorkflowOwnerAddress(prefix, ownerKey)
-	require.NoError(t, err, "Failed to generate second address")
-
-	// Verify all addresses are identical
-	addr1Hex := hex.EncodeToString(addr1)
-	addr2Hex := hex.EncodeToString(addr2)
-
-	require.Equal(t, addr1Hex, addr2Hex, "Same inputs should generate same address")
-}
-
-func Test_GenerateWorkflowOwnerAddress_SolidityCompatibility(t *testing.T) {
-	/*
-		// SPDX-License-Identifier: MIT
-		pragma solidity ^0.8.0;
-
-		contract WorkflowOwnerAddressGenerator {
-
-		    function generateWorkflowOwnerAddress(
-		        string memory prefix,
-		        string memory ownerKey
-		    ) public pure returns (address) {
-		        // Step 1: Create nested hash of prefix + ownerKey
-		        bytes32 nestedHash = keccak256(abi.encodePacked(prefix, ownerKey));
-
-		        // Step 2: Create the full preimage for outer hash
-		        // 0xff + 84 zero bytes + nested hash
-		        bytes memory preimage = new bytes(117); // 1 + 84 + 32 = 117 bytes
-
-		        // Set first byte to 0xff
-		        preimage[0] = 0xff;
-
-		        // Bytes 1-84 are already zero (default in Solidity)
-
-		        // Copy nested hash to bytes 85-116
-		        for (uint256 i = 0; i < 32; i++) {
-		            preimage[85 + i] = nestedHash[i];
-		        }
-
-		        // Step 3: Hash the full preimage and return last 20 bytes as address
-		        bytes32 outerHash = keccak256(preimage);
-		        return address(uint160(uint256(outerHash)));
-		    }
-		}
-	*/
-	// These expected addresses were generated using the Solidity contract above
-	// You can verify these by deploying the contract and calling the function
+func Test_GenerateWorkflowOwnerAddress_CollisionResistanceWithLengthPrefixing(t *testing.T) {
+	// Test that the length-prefixing prevents collisions
 	testCases := []struct {
-		prefix      string
-		ownerKey    string
-		expectedHex string // This should be generated by running the Solidity contract
+		prefix1  string
+		owner1   string
+		prefix2  string
+		owner2   string
+		caseName string
 	}{
 		{
-			prefix:      "registry1",
-			ownerKey:    "owner123",
-			expectedHex: "0x58c0e4aaf5fb13fcaea5790f8a19014ad9646da3", // convert to lowercase, not checksum
+			prefix1:  "x",
+			owner1:   "yz",
+			prefix2:  "xy",
+			owner2:   "z",
+			caseName: "x+yz vs xy+z collision resistance",
+		},
+		{
+			prefix1:  "a",
+			owner1:   "bc",
+			prefix2:  "ab",
+			owner2:   "c",
+			caseName: "a+bc vs ab+c collision resistance",
 		},
 		{
-			prefix:      "registry2",
-			ownerKey:    "owner123",
-			expectedHex: "0xf094995741cffc6c173fa9edb2e8d766d1524039", // convert to lowercase, not checksum
+			prefix1:  "",
+			owner1:   "abc",
+			prefix2:  "a",
+			owner2:   "bc",
+			caseName: "empty+abc vs a+bc collision resistance",
 		},
 		{
-			prefix:      "registry2",
-			ownerKey:    "ownerSomethingElse",
-			expectedHex: "0x4be6a8e38aa493cac0aa4c6dd13bad41f8219f0c", // convert to lowercase, not checksum
+			prefix1:  "test",
+			owner1:   "",
+			prefix2:  "tes",
+			owner2:   "t",
+			caseName: "test+empty vs tes+t collision resistance",
 		},
 	}
 
 	for _, tc := range testCases {
-		t.Run(tc.prefix+"_"+tc.ownerKey, func(t *testing.T) {
-			goAddr, err := GenerateWorkflowOwnerAddress(tc.prefix, tc.ownerKey)
+		t.Run(tc.caseName, func(t *testing.T) {
+			addr1, err := GenerateWorkflowOwnerAddress(tc.prefix1, tc.owner1)
 			require.NoError(t, err)
 
-			goAddrHex := hex.EncodeToString(goAddr)
-
-			// Remove 0x prefix if present in expected
-			expected := strings.TrimPrefix(tc.expectedHex, "0x")
+			addr2, err := GenerateWorkflowOwnerAddress(tc.prefix2, tc.owner2)
+			require.NoError(t, err)
 
-			require.Equal(t, expected, goAddrHex,
-				"Go implementation should match Solidity for prefix='%s', ownerKey='%s'",
-				tc.prefix, tc.ownerKey)
+			require.NotEqual(t, hex.EncodeToString(addr1), hex.EncodeToString(addr2),
+				"Addresses should be different")
 		})
 	}
 }
