| /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */ |
| /* |
| * Copyright (c) 2017-2023, Regents of the University of California. |
| * |
| * This file is part of ndncert, a certificate management system based on NDN. |
| * |
| * ndncert is free software: you can redistribute it and/or modify it under the terms |
| * of the GNU General Public License as published by the Free Software Foundation, either |
| * version 3 of the License, or (at your option) any later version. |
| * |
| * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY |
| * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A |
| * PARTICULAR PURPOSE. See the GNU General Public License for more details. |
| * |
| * You should have received copies of the GNU General Public License along with |
| * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>. |
| * |
| * See AUTHORS.md for complete list of ndncert authors and contributors. |
| */ |
| |
| #include "ca-module.hpp" |
| #include "challenge/challenge-pin.hpp" |
| #include "detail/info-encoder.hpp" |
| #include "requester-request.hpp" |
| |
| #include "tests/boost-test.hpp" |
| #include "tests/io-key-chain-fixture.hpp" |
| |
| #include <ndn-cxx/metadata-object.hpp> |
| #include <ndn-cxx/security/verification-helpers.hpp> |
| #include <ndn-cxx/util/dummy-client-face.hpp> |
| |
| namespace ndncert::tests { |
| |
| BOOST_FIXTURE_TEST_SUITE(Benchmark, IoKeyChainFixture) |
| |
| BOOST_AUTO_TEST_CASE(PacketSize0) |
| { |
| auto identity = m_keyChain.createIdentity(Name("/ndn")); |
| auto key = identity.getDefaultKey(); |
| auto cert = key.getDefaultCertificate(); |
| |
| ndn::DummyClientFace face(m_io, m_keyChain, {true, true}); |
| ca::CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory"); |
| advanceClocks(time::milliseconds(20), 60); |
| auto profileData = ca.getCaProfileData(); |
| |
| Interest interest = ndn::MetadataObject::makeDiscoveryInterest(Name("/ndn/CA/INFO")); |
| // std::cout << "CA Config discovery Interest Size: " << interest.wireEncode().size() << std::endl; |
| std::shared_ptr<Interest> infoInterest; |
| |
| face.setInterestFilter( |
| ndn::InterestFilter("/ndn/CA/INFO"), |
| [&](const auto&, const Interest& interest) { |
| // std::cout << interest.getName() << std::endl; |
| if (interest.getName() == profileData.getName()) { |
| face.put(profileData); |
| } |
| }, |
| nullptr, nullptr); |
| advanceClocks(time::milliseconds(20), 60); |
| |
| int count = 0; |
| face.onSendData.connect([&](const Data& response) { |
| if (count == 0) { |
| count++; |
| // std::cout << "CA Config MetaData Size: " << response.wireEncode().size() << std::endl; |
| auto block = response.getContent(); |
| block.parse(); |
| infoInterest = std::make_shared<Interest>(Name(block.get(ndn::tlv::Name)).appendSegment(0)); |
| // std::cout << "CA Config fetch Interest Size: " << infoInterest->wireEncode().size() << std::endl; |
| } |
| else { |
| count++; |
| // std::cout << "CA Config Data Size: " << response.wireEncode().size() << std::endl; |
| BOOST_CHECK(ndn::security::verifySignature(response, cert)); |
| auto contentBlock = response.getContent(); |
| contentBlock.parse(); |
| auto caItem = infotlv::decodeDataContent(contentBlock); |
| BOOST_CHECK_EQUAL(caItem.caPrefix, "/ndn"); |
| BOOST_CHECK_EQUAL(caItem.probeParameterKeys.size(), 1); |
| BOOST_CHECK_EQUAL(caItem.probeParameterKeys.front(), "full name"); |
| BOOST_CHECK_EQUAL(caItem.cert->wireEncode(), cert.wireEncode()); |
| BOOST_CHECK_EQUAL(caItem.caInfo, "ndn testbed ca"); |
| } |
| }); |
| face.receive(interest); |
| advanceClocks(time::milliseconds(20), 60); |
| face.receive(*infoInterest); |
| advanceClocks(time::milliseconds(20), 60); |
| |
| BOOST_CHECK_EQUAL(count, 2); |
| } |
| |
| BOOST_AUTO_TEST_CASE(PacketSize1) |
| { |
| auto identity = m_keyChain.createIdentity(Name("/ndn")); |
| auto key = identity.getDefaultKey(); |
| auto cert = key.getDefaultCertificate(); |
| |
| ndn::DummyClientFace face(m_io, m_keyChain, {true, true}); |
| ca::CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory"); |
| advanceClocks(time::milliseconds(20), 60); |
| |
| // generate NEW Interest |
| CaProfile item; |
| item.caPrefix = Name("/ndn"); |
| item.cert = std::make_shared<Certificate>(cert); |
| requester::Request state(m_keyChain, item, RequestType::NEW); |
| auto newInterest = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/alice")).getDefaultKey().getName(), |
| time::system_clock::now(), |
| time::system_clock::now() + time::days(1)); |
| // std::cout << "New Interest Size: " << newInterest->wireEncode().size() << std::endl; |
| |
| // generate CHALLENGE Interest |
| std::shared_ptr<Interest> challengeInterest; |
| std::shared_ptr<Interest> challengeInterest2; |
| std::shared_ptr<Interest> challengeInterest3; |
| |
| int count = 0; |
| face.onSendData.connect([&](const Data& response) { |
| if (Name("/ndn/CA/NEW").isPrefixOf(response.getName())) { |
| // std::cout << "NEW Data Size: " << response.wireEncode().size() << std::endl; |
| auto challengeList = state.onNewRenewRevokeResponse(response); |
| auto paramList = state.selectOrContinueChallenge("pin"); |
| challengeInterest = state.genChallengeInterest(std::move(paramList)); |
| } |
| else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 0) { |
| count++; |
| BOOST_CHECK(ndn::security::verifySignature(response, cert)); |
| |
| state.onChallengeResponse(response); |
| BOOST_CHECK(state.m_status == Status::CHALLENGE); |
| BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::NEED_CODE); |
| auto paramList = state.selectOrContinueChallenge("pin"); |
| challengeInterest2 = state.genChallengeInterest(std::move(paramList)); |
| } |
| else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 1) { |
| count++; |
| BOOST_CHECK(ndn::security::verifySignature(response, cert)); |
| |
| state.onChallengeResponse(response); |
| BOOST_CHECK(state.m_status == Status::CHALLENGE); |
| BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::WRONG_CODE); |
| |
| auto paramList = state.selectOrContinueChallenge("pin"); |
| auto request = ca.getCertificateRequest(*challengeInterest2); |
| auto secret = request->challengeState->secrets.get(ChallengePin::PARAMETER_KEY_CODE, ""); |
| paramList.begin()->second = secret; |
| challengeInterest3 = state.genChallengeInterest(std::move(paramList)); |
| // std::cout << "CHALLENGE Interest Size: " << challengeInterest3->wireEncode().size() << std::endl; |
| } |
| else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 2) { |
| // std::cout << "CHALLENGE Data Size: " << response.wireEncode().size() << std::endl; |
| count++; |
| BOOST_CHECK(ndn::security::verifySignature(response, cert)); |
| state.onChallengeResponse(response); |
| BOOST_CHECK(state.m_status == Status::SUCCESS); |
| } |
| }); |
| |
| face.receive(*newInterest); |
| advanceClocks(time::milliseconds(20), 60); |
| face.receive(*challengeInterest); |
| advanceClocks(time::milliseconds(20), 60); |
| face.receive(*challengeInterest2); |
| advanceClocks(time::milliseconds(20), 60); |
| face.receive(*challengeInterest3); |
| advanceClocks(time::milliseconds(20), 60); |
| BOOST_CHECK_EQUAL(count, 3); |
| } |
| |
| BOOST_AUTO_TEST_SUITE_END() // Benchmark |
| |
| } // namespace ndncert::tests |