Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 51974f6b11da482a97479c05aad7a34b0c161ba5 / . / tests / unit / security / validator-config.t.cpp
blob: 8ca42453616895cbeb09e14e1173278b0fef5ca5 [file] [log] [blame]
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Junxiao Shi2bea5c42017-08-14 20:10:32 +0000[diff] [blame]2/*
Davide Pesavento0c526032024-01-31 21:14:01 -0500[diff] [blame]3 * Copyright (c) 2013-2024 Regents of the University of California.
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]4 *
5 * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
6 *
7 * ndn-cxx library is free software: you can redistribute it and/or modify it under the
8 * terms of the GNU Lesser General Public License as published by the Free Software
9 * Foundation, either version 3 of the License, or (at your option) any later version.
10 *
11 * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License and GNU Lesser
16 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
17 * <http://www.gnu.org/licenses/>.
18 *
19 * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
20 */
21
Davide Pesavento7e780642018-11-24 15:51:34 -0500[diff] [blame]22#include "ndn-cxx/security/validator-config.hpp"
Davide Pesavento4c1ad4c2020-11-16 21:12:02 -0500[diff] [blame]23
Alexander Afanasyev09236c22020-06-03 13:42:38 -0400[diff] [blame]24#include "ndn-cxx/security/certificate-fetcher-offline.hpp"
Davide Pesavento77c5ce82021-05-07 16:12:02 -0400[diff] [blame]25#include "ndn-cxx/security/interest-signer.hpp"
Davide Pesavento7e780642018-11-24 15:51:34 -0500[diff] [blame]26#include "ndn-cxx/util/dummy-client-face.hpp"
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]27
Davide Pesavento7e780642018-11-24 15:51:34 -0500[diff] [blame]28#include "tests/boost-test.hpp"
Davide Pesavento4c1ad4c2020-11-16 21:12:02 -0500[diff] [blame]29#include "tests/key-chain-fixture.hpp"
Alexander Afanasyev09236c22020-06-03 13:42:38 -0400[diff] [blame]30#include "tests/unit/security/validator-config/common.hpp"
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]31
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]32namespace ndn::tests {
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]33
Junxiao Shid5827ce2016-07-14 20:49:37 +0000[diff] [blame]34BOOST_AUTO_TEST_SUITE(Security)
Davide Pesavento4c1ad4c2020-11-16 21:12:02 -0500[diff] [blame]35BOOST_FIXTURE_TEST_SUITE(TestValidatorConfig, KeyChainFixture)
Alexander Afanasyev70244f42017-01-04 12:47:12 -0800[diff] [blame]36
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]37// This test only for API, actual tests are in ValidationPolicyConfig and corresponding CertificateFetchers
38
39BOOST_AUTO_TEST_CASE(Construct)
40{
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]41 DummyClientFace face;
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]42
43 ValidatorConfig v1(face);
44 BOOST_CHECK_EQUAL(v1.m_policyConfig.m_isConfigured, false);
45
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]46 ValidatorConfig v2(make_unique<security::CertificateFetcherOffline>());
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]47 BOOST_CHECK_EQUAL(v2.m_policyConfig.m_isConfigured, false);
48}
49
Davide Pesavento4c1ad4c2020-11-16 21:12:02 -0500[diff] [blame]50class ValidatorConfigFixture : public KeyChainFixture
Alexander Afanasyev70244f42017-01-04 12:47:12 -0800[diff] [blame]51{
52public:
53 ValidatorConfigFixture()
Davide Pesavento51974f62024-12-21 20:42:45 -0500[diff] [blame^]54 : path(std::filesystem::path(UNIT_TESTS_TMPDIR) / "security" / "validator-config")
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]55 , validator(make_unique<security::CertificateFetcherOffline>())
Alexander Afanasyev70244f42017-01-04 12:47:12 -0800[diff] [blame]56 {
Davide Pesavento51974f62024-12-21 20:42:45 -0500[diff] [blame^]57 std::filesystem::create_directories(path);
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]58 config = R"CONF(
59 trust-anchor
60 {
61 type any
62 }
63 )CONF";
Davide Pesavento51974f62024-12-21 20:42:45 -0500[diff] [blame^]64 configFile = path / "config.conf";
65 std::ofstream(configFile) << config;
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]66 }
67
68 ~ValidatorConfigFixture()
69 {
Davide Pesavento51974f62024-12-21 20:42:45 -0500[diff] [blame^]70 std::filesystem::remove_all(path);
Alexander Afanasyev70244f42017-01-04 12:47:12 -0800[diff] [blame]71 }
72
73public:
Davide Pesavento51974f62024-12-21 20:42:45 -0500[diff] [blame^]74 const std::filesystem::path path;
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]75 std::string config;
76 std::string configFile;
Alexander Afanasyev70244f42017-01-04 12:47:12 -0800[diff] [blame]77 ValidatorConfig validator;
78};
79
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]80BOOST_FIXTURE_TEST_SUITE(Loads, ValidatorConfigFixture)
Alexander Afanasyeve4f8c3b2016-06-23 16:03:48 -0700[diff] [blame]81
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]82BOOST_AUTO_TEST_CASE(FromFile)
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]83{
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]84 validator.load(configFile);
85 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Alexander Afanasyev6aff0242017-08-29 17:14:44 -0400[diff] [blame]86
87 // should reload policy
88 validator.load(configFile);
89 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]90}
91
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]92BOOST_AUTO_TEST_CASE(FromString)
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]93{
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]94 validator.load(config, "config-file-from-string");
95 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Alexander Afanasyev6aff0242017-08-29 17:14:44 -0400[diff] [blame]96
97 // should reload policy
98 validator.load(config, "config-file-from-string");
99 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]100}
101
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]102BOOST_AUTO_TEST_CASE(FromIstream)
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]103{
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]104 std::istringstream is(config);
105 validator.load(is, "config-file-from-istream");
106 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Alexander Afanasyev6aff0242017-08-29 17:14:44 -0400[diff] [blame]107
108 // should reload policy
109 std::istringstream is2(config);
110 validator.load(is2, "config-file-from-istream");
111 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]112}
113
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]114BOOST_AUTO_TEST_CASE(FromSection)
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]115{
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]116 validator.load(makeSection(config), "config-file-from-section");
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]117 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Alexander Afanasyev6aff0242017-08-29 17:14:44 -0400[diff] [blame]118
119 // should reload policy
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]120 validator.load(makeSection(config), "config-file-from-section");
Alexander Afanasyev6aff0242017-08-29 17:14:44 -0400[diff] [blame]121 BOOST_CHECK_EQUAL(validator.m_policyConfig.m_isConfigured, true);
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]122}
123
Alexander Afanasyeve5a19b82017-01-30 22:30:46 -0800[diff] [blame]124BOOST_AUTO_TEST_SUITE_END() // Loads
Zhiyi Zhang48becde2017-01-05 16:41:38 -0800[diff] [blame]125
Davide Pesavento0c526032024-01-31 21:14:01 -0500[diff] [blame]126BOOST_FIXTURE_TEST_CASE(ValidateCommandInterestWithDigestSha256, ValidatorConfigFixture,
127 * ut::description("test for bug #4635"))
Alexander Afanasyev31fd4672018-06-17 13:25:52 -0400[diff] [blame]128{
129 validator.load(configFile);
130
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]131 security::InterestSigner signer(m_keyChain);
Alexander Afanasyev31fd4672018-06-17 13:25:52 -0400[diff] [blame]132 auto i = signer.makeCommandInterest("/hello/world/CMD", signingWithSha256());
133 size_t nValidated = 0, nFailed = 0;
134
135 validator.validate(i, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
136 BOOST_CHECK_EQUAL(nValidated, 1);
137 BOOST_CHECK_EQUAL(nFailed, 0);
138
139 validator.validate(i, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
140 BOOST_CHECK_EQUAL(nValidated, 1);
141 BOOST_CHECK_EQUAL(nFailed, 1);
142
143 i = signer.makeCommandInterest("/hello/world/CMD", signingWithSha256());
144 validator.validate(i, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
145 BOOST_CHECK_EQUAL(nValidated, 2);
146 BOOST_CHECK_EQUAL(nFailed, 1);
147}
148
Eric Newberry1caa6342020-08-23 19:29:08 -0700[diff] [blame]149BOOST_FIXTURE_TEST_CASE(ValidateSignedInterest, ValidatorConfigFixture)
150{
151 validator.load(configFile);
152
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]153 security::InterestSigner signer(m_keyChain);
Eric Newberry1caa6342020-08-23 19:29:08 -0700[diff] [blame]154 Interest i1("/hello/world");
Eric Newberry1caa6342020-08-23 19:29:08 -0700[diff] [blame]155 signer.makeSignedInterest(i1);
156 size_t nValidated = 0, nFailed = 0;
157
158 validator.validate(i1, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
159 BOOST_CHECK_EQUAL(nValidated, 1);
160 BOOST_CHECK_EQUAL(nFailed, 0);
161
162 validator.validate(i1, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
163 BOOST_CHECK_EQUAL(nValidated, 1);
164 BOOST_CHECK_EQUAL(nFailed, 1);
165
166 Interest i2("/hello/world");
Eric Newberry1caa6342020-08-23 19:29:08 -0700[diff] [blame]167 signer.makeSignedInterest(i2, signingWithSha256());
168 validator.validate(i2, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
169 BOOST_CHECK_EQUAL(nValidated, 2);
170 BOOST_CHECK_EQUAL(nFailed, 1);
171}
172
173BOOST_FIXTURE_TEST_CASE(ValidateCommandInterest, ValidatorConfigFixture)
174{
175 validator.load(configFile);
176
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]177 security::InterestSigner signer(m_keyChain);
Eric Newberry1caa6342020-08-23 19:29:08 -0700[diff] [blame]178 auto i1 = signer.makeCommandInterest("/hello/world");
179 size_t nValidated = 0, nFailed = 0;
180
181 validator.validate(i1, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
182 BOOST_CHECK_EQUAL(nValidated, 1);
183 BOOST_CHECK_EQUAL(nFailed, 0);
184
185 validator.validate(i1, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
186 BOOST_CHECK_EQUAL(nValidated, 1);
187 BOOST_CHECK_EQUAL(nFailed, 1);
188
189 auto i2 = signer.makeCommandInterest("/hello/world");
190 validator.validate(i2, [&] (auto&&...) { ++nValidated; }, [&] (auto&&...) { ++nFailed; });
191 BOOST_CHECK_EQUAL(nValidated, 2);
192 BOOST_CHECK_EQUAL(nFailed, 1);
193}
Alexander Afanasyev31fd4672018-06-17 13:25:52 -0400[diff] [blame]194
Junxiao Shid5827ce2016-07-14 20:49:37 +0000[diff] [blame]195BOOST_AUTO_TEST_SUITE_END() // TestValidatorConfig
196BOOST_AUTO_TEST_SUITE_END() // Security
Yingdi Yu41546342014-11-30 23:37:53 -0800[diff] [blame]197
Davide Pesavento47ce2ee2023-05-09 01:33:33 -0400[diff] [blame]198} // namespace ndn::tests