Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 01e91a30902fb87e0f18e7b83d86bcae4004a5f6 / . / tests / unit-tests / ca-module.t.cpp
blob: ec4c779697020538d48639cc5fa7429b0b24c1d7 [file] [log] [blame]
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]2/*
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]3 * Copyright (c) 2017-2020, Regents of the University of California.
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]4 *
5 * This file is part of ndncert, a certificate management system based on NDN.
6 *
7 * ndncert is free software: you can redistribute it and/or modify it under the terms
8 * of the GNU General Public License as published by the Free Software Foundation, either
9 * version 3 of the License, or (at your option) any later version.
10 *
11 * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License along with
16 * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
17 *
18 * See AUTHORS.md for complete list of ndncert authors and contributors.
19 */
20
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]21#include "ca-module.hpp"
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]22#include "challenge-module.hpp"
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]23#include "challenge-module/challenge-email.hpp"
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]24#include "challenge-module/challenge-pin.hpp"
25#include "client-module.hpp"
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]26#include "protocol-detail/info.hpp"
Zhiyi Zhang5d80e1e2020-09-25 11:34:54 -0700[diff] [blame]27#include "test-common.hpp"
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]28
29namespace ndn {
30namespace ndncert {
31namespace tests {
32
Zhiyi Zhangae123bf2017-04-14 12:24:53 -0700[diff] [blame]33BOOST_FIXTURE_TEST_SUITE(TestCaModule, DatabaseFixture)
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]34
35BOOST_AUTO_TEST_CASE(Initialization)
36{
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]37 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]38 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Suyong Won44d0cce2020-05-10 04:07:43 -0700[diff] [blame]39 BOOST_CHECK_EQUAL(ca.getCaConf().m_caPrefix, "/ndn");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]40
41 auto identity = addIdentity(Name("/ndn/site2"));
42 auto key = identity.getDefaultKey();
43 auto cert = key.getDefaultCertificate();
44 ca.getCaStorage()->addCertificate("111", cert);
45 BOOST_CHECK_EQUAL(ca.getCaStorage()->getCertificate("111").getIdentity(), Name("/ndn/site2"));
46
47 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]48 BOOST_CHECK_EQUAL(ca.m_registeredPrefixHandles.size(), 2);
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]49 BOOST_CHECK_EQUAL(ca.m_interestFilterHandles.size(), 5); // onInfo, onProbe, onNew, onChallenge, onRevoke
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]50}
51
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]52BOOST_AUTO_TEST_CASE(HandleProbe)
53{
54 auto identity = addIdentity(Name("/ndn"));
55 auto key = identity.getDefaultKey();
56 auto cert = key.getDefaultCertificate();
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]57
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]58 util::DummyClientFace face(io, m_keyChain, {true, true});
59 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
60 ca.setNameAssignmentFunction([&](const std::vector<std::tuple<std::string, std::string>>) -> std::vector<std::string> {
61 std::vector<std::string> result;
62 result.push_back("example");
63 return result;
64 });
65 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]66
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]67 Interest interest("/ndn/CA/PROBE");
68 interest.setCanBePrefix(false);
Suyong Won44d0cce2020-05-10 04:07:43 -0700[diff] [blame]69
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]70 Block paramTLV = makeEmptyBlock(tlv::ApplicationParameters);
71 paramTLV.push_back(makeStringBlock(tlv_parameter_key, JSON_CLIENT_PROBE_INFO));
72 paramTLV.push_back(makeStringBlock(tlv_parameter_value, "zhiyi"));
73 paramTLV.encode();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]74
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]75 interest.setApplicationParameters(paramTLV);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]76
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]77 int count = 0;
78 face.onSendData.connect([&](const Data& response) {
79 count++;
80 BOOST_CHECK(security::verifySignature(response, cert));
81 Block contentBlock = response.getContent();
82 contentBlock.parse();
83 Block probeResponse = contentBlock.get(tlv_probe_response);
84 probeResponse.parse();
85 Name caName;
86 caName.wireDecode(probeResponse.get(tlv::Name));
87 BOOST_CHECK_EQUAL(caName, "/ndn/example");
88 });
89 face.receive(interest);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]90
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]91 advanceClocks(time::milliseconds(20), 60);
92 BOOST_CHECK_EQUAL(count, 1);
93}
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]94
swa77020643ac2020-03-26 02:24:45 -0700[diff] [blame]95BOOST_AUTO_TEST_CASE(HandleInfo)
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]96{
97 auto identity = addIdentity(Name("/ndn"));
98 auto key = identity.getDefaultKey();
99 auto cert = key.getDefaultCertificate();
100
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]101 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]102 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]103 advanceClocks(time::milliseconds(20), 60);
104
swa77020643ac2020-03-26 02:24:45 -0700[diff] [blame]105 Interest interest("/ndn/CA/INFO");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]106 interest.setCanBePrefix(false);
107
108 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]109 face.onSendData.connect([&](const Data& response) {
110 count++;
111 BOOST_CHECK(security::verifySignature(response, cert));
112 auto contentBlock = response.getContent();
113 contentBlock.parse();
114 auto caItem = INFO::decodeClientConfigFromContent(contentBlock);
115 BOOST_CHECK_EQUAL(caItem.m_caPrefix, "/ndn");
116 BOOST_CHECK_EQUAL(caItem.m_probe, "");
117 BOOST_CHECK_EQUAL(caItem.m_anchor.wireEncode(), cert.wireEncode());
118 BOOST_CHECK_EQUAL(caItem.m_caInfo, "ndn testbed ca");
119 });
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]120 face.receive(interest);
121
122 advanceClocks(time::milliseconds(20), 60);
123 BOOST_CHECK_EQUAL(count, 1);
124}
125
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]126BOOST_AUTO_TEST_CASE(HandleProbeUsingDefaultHandler)
127{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]128 auto identity = addIdentity(Name("/ndn"));
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]129 auto key = identity.getDefaultKey();
130 auto cert = key.getDefaultCertificate();
131
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]132 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]133 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]134 advanceClocks(time::milliseconds(20), 60);
135
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]136 Interest interest("/ndn/CA/PROBE");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]137 interest.setCanBePrefix(false);
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]138
139 Block paramTLV = makeEmptyBlock(tlv::ApplicationParameters);
140 paramTLV.push_back(makeStringBlock(tlv_parameter_key, JSON_CLIENT_PROBE_INFO));
141 paramTLV.push_back(makeStringBlock(tlv_parameter_value, "zhiyi"));
142 paramTLV.encode();
143
144 interest.setApplicationParameters(paramTLV);
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]145
146 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]147 face.onSendData.connect([&](const Data& response) {
148 count++;
149 BOOST_CHECK(security::verifySignature(response, cert));
150 auto contentBlock = response.getContent();
151 contentBlock.parse();
152 auto probeResponseBlock = contentBlock.get(tlv_probe_response);
153 probeResponseBlock.parse();
154 Name caPrefix;
155 caPrefix.wireDecode(probeResponseBlock.get(tlv::Name));
156 BOOST_CHECK(caPrefix != "");
157 });
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]158 face.receive(interest);
159
160 advanceClocks(time::milliseconds(20), 60);
161 BOOST_CHECK_EQUAL(count, 1);
162}
163
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]164BOOST_AUTO_TEST_CASE(HandleNew)
165{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]166 auto identity = addIdentity(Name("/ndn"));
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]167 auto key = identity.getDefaultKey();
168 auto cert = key.getDefaultCertificate();
169
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]170 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]171 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]172 advanceClocks(time::milliseconds(20), 60);
173
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]174 ClientModule client(m_keyChain);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]175 ClientCaItem item;
Suyong Won256c9062020-05-11 02:45:56 -0700[diff] [blame]176 item.m_caPrefix = Name("/ndn");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]177 item.m_anchor = cert;
178 client.getClientConf().m_caItems.push_back(item);
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]179
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]180 auto interest = client.generateNewInterest(time::system_clock::now(),
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]181 time::system_clock::now() + time::days(1),
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]182 Name("/ndn/zhiyi"));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]183
184 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]185 face.onSendData.connect([&](const Data& response) {
186 count++;
187 BOOST_CHECK(security::verifySignature(response, cert));
188 auto contentBlock = response.getContent();
189 contentBlock.parse();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]190
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]191 BOOST_CHECK(readString(contentBlock.get(tlv_ecdh_pub)) != "");
192 BOOST_CHECK(readString(contentBlock.get(tlv_salt)) != "");
193 BOOST_CHECK(readString(contentBlock.get(tlv_request_id)) != "");
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]194
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]195 auto challengeBlockCount = 0;
196 for (auto const& element : contentBlock.elements()) {
197 if (element.type() == tlv_challenge) {
198 challengeBlockCount++;
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]199 }
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]200 }
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]201
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]202 BOOST_CHECK(challengeBlockCount != 0);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]203
tylerliu0e176c32020-09-29 11:39:46 -0700[diff] [blame]204 client.onNewRenewRevokeResponse(response);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]205 BOOST_CHECK_EQUAL_COLLECTIONS(client.m_aesKey, client.m_aesKey + sizeof(client.m_aesKey),
206 ca.m_aesKey, ca.m_aesKey + sizeof(ca.m_aesKey));
207 });
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]208 face.receive(*interest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]209
210 advanceClocks(time::milliseconds(20), 60);
211 BOOST_CHECK_EQUAL(count, 1);
212}
213
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]214BOOST_AUTO_TEST_CASE(HandleNewWithInvalidValidityPeriod1)
215{
216 auto identity = addIdentity(Name("/ndn"));
217 auto key = identity.getDefaultKey();
218 auto cert = key.getDefaultCertificate();
219
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]220 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]221 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test");
222 advanceClocks(time::milliseconds(20), 60);
223
224 ClientModule client(m_keyChain);
225 ClientCaItem item;
Suyong Won256c9062020-05-11 02:45:56 -0700[diff] [blame]226 item.m_caPrefix = Name("/ndn");
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]227 item.m_anchor = cert;
228 client.getClientConf().m_caItems.push_back(item);
229 auto current_tp = time::system_clock::now();
230 auto interest1 = client.generateNewInterest(current_tp, current_tp - time::hours(1),
231 Name("/ndn/zhiyi"));
232 auto interest2 = client.generateNewInterest(current_tp, current_tp + time::days(361),
233 Name("/ndn/zhiyi"));
234 auto interest3 = client.generateNewInterest(current_tp - time::hours(1),
235 current_tp + time::hours(2),
236 Name("/ndn/zhiyi"));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]237 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]238 auto contentTlv = response.getContent();
239 contentTlv.parse();
240 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv_error_code)));
241 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]242 });
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]243 face.receive(*interest1);
244 face.receive(*interest2);
245 face.receive(*interest3);
246
247 advanceClocks(time::milliseconds(20), 60);
248}
249
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]250BOOST_AUTO_TEST_CASE(HandleNewWithProbeToken)
251{
252 auto identity = addIdentity(Name("/ndn"));
253 auto key = identity.getDefaultKey();
254 auto cert = key.getDefaultCertificate();
255
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]256 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]257 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]258 advanceClocks(time::milliseconds(20), 60);
259
260 ClientModule client(m_keyChain);
261 ClientCaItem item;
Suyong Won256c9062020-05-11 02:45:56 -0700[diff] [blame]262 item.m_caPrefix = Name("/ndn");
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]263 item.m_anchor = cert;
264 client.getClientConf().m_caItems.push_back(item);
265
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]266 auto data = make_shared<Data>(Name("/ndn/CA/PROBE/123"));
Suyong Won256c9062020-05-11 02:45:56 -0700[diff] [blame]267 m_keyChain.sign(*data, signingByIdentity(ca.m_config.m_caPrefix));
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]268
269 auto interest = client.generateNewInterest(time::system_clock::now(),
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]270 time::system_clock::now() + time::days(1),
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]271 Name("/ndn/zhiyi"), data);
272
273 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]274 face.onSendData.connect([&](const Data& response) {
275 count++;
276 BOOST_CHECK(security::verifySignature(response, cert));
277 });
Zhiyi Zhang5f749a22019-06-12 17:02:33 -0700[diff] [blame]278 face.receive(*interest);
279
280 advanceClocks(time::milliseconds(20), 60);
281 BOOST_CHECK_EQUAL(count, 1);
282}
283
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]284BOOST_AUTO_TEST_CASE(HandleNewWithLongSuffix)
285{
286 auto identity = addIdentity(Name("/ndn"));
287 auto key = identity.getDefaultKey();
288 auto cert = key.getDefaultCertificate();
289
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]290 util::DummyClientFace face(io, m_keyChain, {true, true});
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]291 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
292 advanceClocks(time::milliseconds(20), 60);
293
294 ClientModule client(m_keyChain);
295 ClientCaItem item;
296 item.m_caPrefix = Name("/ndn");
297 item.m_anchor = cert;
298 client.getClientConf().m_caItems.push_back(item);
299
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]300 auto interest1 = client.generateNewInterest(time::system_clock::now(),
301 time::system_clock::now() + time::days(1),
302 Name("/ndn/a"));
303 auto interest2 = client.generateNewInterest(time::system_clock::now(),
304 time::system_clock::now() + time::days(1),
305 Name("/ndn/a/b"));
306 auto interest3 = client.generateNewInterest(time::system_clock::now(),
307 time::system_clock::now() + time::days(1),
308 Name("/ndn/a/b/c/d"));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]309
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]310 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]311 auto contentTlv = response.getContent();
312 contentTlv.parse();
313 if (interest3->getName().isPrefixOf(response.getName())) {
314 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv_error_code)));
315 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
316 }
317 else {
318 // should successfully get responses
319 BOOST_CHECK_EXCEPTION(readNonNegativeInteger(contentTlv.get(tlv_error_code)), std::runtime_error,
320 [](const auto& e) { return true; });
321 }
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]322 });
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]323 face.receive(*interest1);
324 face.receive(*interest2);
325 face.receive(*interest3);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]326 advanceClocks(time::milliseconds(20), 60);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]327}
328
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]329BOOST_AUTO_TEST_CASE(HandleNewWithInvalidLength1)
330{
331 auto identity = addIdentity(Name("/ndn"));
332 auto key = identity.getDefaultKey();
333 auto cert = key.getDefaultCertificate();
334
335 util::DummyClientFace face(io, m_keyChain, {true, true});
336 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test");
337 advanceClocks(time::milliseconds(20), 60);
338
339 ClientModule client(m_keyChain);
340 ClientCaItem item;
341 item.m_caPrefix = Name("/ndn");
342 item.m_anchor = cert;
343 client.getClientConf().m_caItems.push_back(item);
344 auto current_tp = time::system_clock::now();
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]345 auto interest1 = client.generateNewInterest(current_tp, current_tp + time::days(1), Name("/ndn"));
346 auto interest2 = client.generateNewInterest(current_tp, current_tp + time::days(1), Name("/ndn/a/b/c/d"));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]347 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame^]348 auto contentTlv = response.getContent();
349 contentTlv.parse();
350 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv_error_code)));
351 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]352 });
353 face.receive(*interest1);
354 face.receive(*interest2);
355
356 advanceClocks(time::milliseconds(20), 60);
357}
358
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]359BOOST_AUTO_TEST_CASE(HandleChallenge)
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]360{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]361 auto identity = addIdentity(Name("/ndn"));
362 auto key = identity.getDefaultKey();
363 auto cert = key.getDefaultCertificate();
364
Zhiyi Zhang22998612020-09-25 14:43:23 -0700[diff] [blame]365 util::DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang42d992d2019-07-07 16:46:50 -0700[diff] [blame]366 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]367 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]368
369 // generate NEW Interest
370 ClientModule client(m_keyChain);
371 ClientCaItem item;
Suyong Won256c9062020-05-11 02:45:56 -0700[diff] [blame]372 item.m_caPrefix = Name("/ndn");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]373 item.m_anchor = cert;
374 client.getClientConf().m_caItems.push_back(item);
375 auto newInterest = client.generateNewInterest(time::system_clock::now(),
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]376 time::system_clock::now() + time::days(1), Name("/ndn/zhiyi"));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]377
378 // generate CHALLENGE Interest
379 ChallengePin pinChallenge;
380 shared_ptr<Interest> challengeInterest = nullptr;
381 shared_ptr<Interest> challengeInterest2 = nullptr;
382 shared_ptr<Interest> challengeInterest3 = nullptr;
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]383
384 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]385 face.onSendData.connect([&](const Data& response) {
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]386 if (Name("/ndn/CA/NEW").isPrefixOf(response.getName())) {
tylerliu0e176c32020-09-29 11:39:46 -0700[diff] [blame]387 client.onNewRenewRevokeResponse(response);
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]388 auto paramList = pinChallenge.getRequestedParameterList(client.m_status, client.m_challengeStatus);
Suyong Won44d0cce2020-05-10 04:07:43 -0700[diff] [blame]389 challengeInterest = client.generateChallengeInterest(pinChallenge.genChallengeRequestTLV(client.m_status,
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]390 client.m_challengeStatus,
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]391 std::move(paramList)));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]392 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]393 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 0) {
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]394 count++;
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]395 BOOST_CHECK(security::verifySignature(response, cert));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]396
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]397 client.onChallengeResponse(response);
Zhiyi Zhang48f23782020-09-28 12:11:24 -0700[diff] [blame]398 BOOST_CHECK(client.m_status == Status::CHALLENGE);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]399 BOOST_CHECK_EQUAL(client.m_challengeStatus, ChallengePin::NEED_CODE);
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]400
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]401 auto paramList = pinChallenge.getRequestedParameterList(client.m_status, client.m_challengeStatus);
Suyong Won44d0cce2020-05-10 04:07:43 -0700[diff] [blame]402 challengeInterest2 = client.generateChallengeInterest(pinChallenge.genChallengeRequestTLV(client.m_status,
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]403 client.m_challengeStatus,
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]404 std::move(paramList)));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]405 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]406 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 1) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]407 count++;
408 BOOST_CHECK(security::verifySignature(response, cert));
409
410 client.onChallengeResponse(response);
Zhiyi Zhang48f23782020-09-28 12:11:24 -0700[diff] [blame]411 BOOST_CHECK(client.m_status == Status::CHALLENGE);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]412 BOOST_CHECK_EQUAL(client.m_challengeStatus, ChallengePin::WRONG_CODE);
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]413
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]414 auto paramList = pinChallenge.getRequestedParameterList(client.m_status, client.m_challengeStatus);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]415 auto request = ca.getCertificateRequest(*challengeInterest2);
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]416 auto secret = request.m_challengeSecrets.get(ChallengePin::PARAMETER_KEY_CODE, "");
417 std::get<1>(paramList[0]) = secret;
Suyong Won44d0cce2020-05-10 04:07:43 -0700[diff] [blame]418 challengeInterest3 = client.generateChallengeInterest(pinChallenge.genChallengeRequestTLV(client.m_status,
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]419 client.m_challengeStatus,
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]420 std::move(paramList)));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]421 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]422 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 2) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]423 count++;
424 BOOST_CHECK(security::verifySignature(response, cert));
425
426 client.onChallengeResponse(response);
Zhiyi Zhang48f23782020-09-28 12:11:24 -0700[diff] [blame]427 BOOST_CHECK(client.m_status == Status::SUCCESS);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]428 }
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]429 });
430
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]431 face.receive(*newInterest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]432 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]433 face.receive(*challengeInterest);
434 advanceClocks(time::milliseconds(20), 60);
435 face.receive(*challengeInterest2);
436 advanceClocks(time::milliseconds(20), 60);
437 face.receive(*challengeInterest3);
438 advanceClocks(time::milliseconds(20), 60);
439 BOOST_CHECK_EQUAL(count, 3);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]440}
441
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]442BOOST_AUTO_TEST_CASE(HandleRevoke)
443{
444 auto identity = addIdentity(Name("/ndn"));
445 auto key = identity.getDefaultKey();
446 auto cert = key.getDefaultCertificate();
447
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]448 util::DummyClientFace face(io, {true, true});
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]449 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
450 advanceClocks(time::milliseconds(20), 60);
451
452 //generate a certificate
453 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
454 auto clientKey = clientIdentity.getDefaultKey();
455 security::v2::Certificate clientCert;
456 clientCert.setName(Name(clientKey.getName()).append("cert-request").appendVersion());
457 clientCert.setContentType(tlv::ContentType_Key);
458 clientCert.setFreshnessPeriod(time::hours(24));
459 clientCert.setContent(clientKey.getPublicKey().data(), clientKey.getPublicKey().size());
460 SignatureInfo signatureInfo;
461 signatureInfo.setValidityPeriod(security::ValidityPeriod(time::system_clock::now(),
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]462 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]463 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
Zhiyi Zhangc87d52b2020-09-28 22:07:18 -0700[diff] [blame]464 CertificateRequest certRequest(Name("/ndn"), "122", RequestType::NEW, Status::SUCCESS, clientCert);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]465 auto issuedCert = ca.issueCertificate(certRequest);
466
467 ClientModule client(m_keyChain);
468 ClientCaItem item;
469 item.m_caName = Name("/ndn");
470 item.m_anchor = cert;
471 client.getClientConf().m_caItems.push_back(item);
472
473 auto interest = client.generateRevokeInterest(issuedCert);
474
475 int count = 0;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]476 face.onSendData.connect([&](const Data& response) {
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]477 count++;
478 BOOST_CHECK(security::verifySignature(response, cert));
479 auto contentBlock = response.getContent();
480 contentBlock.parse();
481
482 BOOST_CHECK(readString(contentBlock.get(tlv_ecdh_pub)) != "");
483 BOOST_CHECK(readString(contentBlock.get(tlv_salt)) != "");
484 BOOST_CHECK(readString(contentBlock.get(tlv_request_id)) != "");
485
486 auto challengeBlockCount = 0;
487 for (auto const& element : contentBlock.elements()) {
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]488 if (element.type() == tlv_challenge) {
489 challengeBlockCount++;
490 }
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]491 }
492
493 BOOST_CHECK(challengeBlockCount != 0);
494
tylerliu0e176c32020-09-29 11:39:46 -0700[diff] [blame]495 client.onNewRenewRevokeResponse(response);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]496 BOOST_CHECK_EQUAL_COLLECTIONS(client.m_aesKey, client.m_aesKey + sizeof(client.m_aesKey),
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]497 ca.m_aesKey, ca.m_aesKey + sizeof(ca.m_aesKey));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]498 });
499 face.receive(*interest);
500
501 advanceClocks(time::milliseconds(20), 60);
502 BOOST_CHECK_EQUAL(count, 1);
503}
504
505BOOST_AUTO_TEST_CASE(HandleRevokeWithBadCert)
506{
507 auto identity = addIdentity(Name("/ndn"));
508 auto key = identity.getDefaultKey();
509 auto cert = key.getDefaultCertificate();
510
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]511 util::DummyClientFace face(io, {true, true});
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]512 CaModule ca(face, m_keyChain, "tests/unit-tests/ca.conf.test", "ca-storage-memory");
513 advanceClocks(time::milliseconds(20), 60);
514
515 //generate a certificate
516 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
517 auto clientKey = clientIdentity.getDefaultKey();
518 security::v2::Certificate clientCert;
519 clientCert.setName(Name(clientKey.getName()).append("NDNCERT").append(std::to_string(1473283247810732701)));
520 clientCert.setContentType(tlv::ContentType_Key);
521 clientCert.setFreshnessPeriod(time::hours(24));
522 clientCert.setContent(clientKey.getPublicKey().data(), clientKey.getPublicKey().size());
523 SignatureInfo signatureInfo;
524 signatureInfo.setValidityPeriod(security::ValidityPeriod(time::system_clock::now(),
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]525 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]526 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
527
528 ClientModule client(m_keyChain);
529 ClientCaItem item;
530 item.m_caName = Name("/ndn");
531 item.m_anchor = cert;
532 client.getClientConf().m_caItems.push_back(item);
533
534 auto interest = client.generateRevokeInterest(clientCert);
535
536 int count = 0;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]537 face.onSendData.connect([&](const Data& response) {
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]538 count++;
539 });
540 face.receive(*interest);
541
542 advanceClocks(time::milliseconds(20), 60);
543 BOOST_CHECK_EQUAL(count, 0);
544}
545
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]546BOOST_AUTO_TEST_SUITE_END() // TestCaModule
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]547
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]548} // namespace tests
549} // namespace ndncert
550} // namespace ndn