Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 0d1d11cda63a83c5ea4acaa1d6639176390d787f / . / tests / unit-tests / ca-module.t.cpp
blob: 19f369db1f24c9d6ac654b91d56a16d5f93cfd73 [file] [log] [blame]
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]2/*
Tianyuan Yu13aac732022-03-03 20:59:54 -0800[diff] [blame]3 * Copyright (c) 2017-2022, Regents of the University of California.
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]4 *
5 * This file is part of ndncert, a certificate management system based on NDN.
6 *
7 * ndncert is free software: you can redistribute it and/or modify it under the terms
8 * of the GNU General Public License as published by the Free Software Foundation, either
9 * version 3 of the License, or (at your option) any later version.
10 *
11 * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License along with
16 * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
17 *
18 * See AUTHORS.md for complete list of ndncert authors and contributors.
19 */
20
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]21#include "ca-module.hpp"
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]22#include "challenge/challenge-module.hpp"
23#include "challenge/challenge-email.hpp"
24#include "challenge/challenge-pin.hpp"
Zhiyi Zhang062be6d2020-10-14 17:13:43 -0700[diff] [blame]25#include "detail/info-encoder.hpp"
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]26#include "requester-request.hpp"
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame^]27
Zhiyi Zhang5d80e1e2020-09-25 11:34:54 -0700[diff] [blame]28#include "test-common.hpp"
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]29
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame^]30namespace ndncert::tests {
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]31
Zhiyi Zhang32d4b4e2020-10-28 22:10:49 -0700[diff] [blame]32using namespace ca;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]33using ndn::util::DummyClientFace;
34using ndn::security::verifySignature;
Zhiyi Zhang32d4b4e2020-10-28 22:10:49 -0700[diff] [blame]35
Zhiyi Zhangae123bf2017-04-14 12:24:53 -0700[diff] [blame]36BOOST_FIXTURE_TEST_SUITE(TestCaModule, DatabaseFixture)
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]37
38BOOST_AUTO_TEST_CASE(Initialization)
39{
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]40 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]41 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]42 BOOST_CHECK_EQUAL(ca.getCaConf().caProfile.caPrefix, "/ndn");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]43
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]44 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]45 BOOST_CHECK_EQUAL(ca.m_registeredPrefixHandles.size(), 1); // removed local discovery registration
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]46 BOOST_CHECK_EQUAL(ca.m_interestFilterHandles.size(), 5); // infoMeta, onProbe, onNew, onChallenge, onRevoke
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]47}
48
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]49BOOST_AUTO_TEST_CASE(HandleProfileFetching)
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]50{
51 auto identity = addIdentity(Name("/ndn"));
52 auto key = identity.getDefaultKey();
53 auto cert = key.getDefaultCertificate();
54
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]55 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]56 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]57 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]58 auto profileData = ca.getCaProfileData();
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]59
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]60 Interest interest = ndn::MetadataObject::makeDiscoveryInterest(Name("/ndn/CA/INFO"));
61 std::shared_ptr<Interest> infoInterest = nullptr;
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]62
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]63 face.setInterestFilter(
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]64 ndn::InterestFilter("/ndn/CA/INFO"),
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]65 [&](const auto&, const Interest& interest) {
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]66 if (interest.getName() == profileData.getName()) {
67 face.put(profileData);
68 }
69 },
70 nullptr, nullptr);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]71 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]72
73 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]74 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]75 if (count == 0) {
76 count++;
77 auto block = response.getContent();
78 block.parse();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]79 infoInterest = std::make_shared<Interest>(Name(block.get(ndn::tlv::Name)).appendSegment(0));
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]80 }
81 else {
82 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]83 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]84 auto contentBlock = response.getContent();
85 contentBlock.parse();
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]86 auto caItem = infotlv::decodeDataContent(contentBlock);
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]87 BOOST_CHECK_EQUAL(caItem.caPrefix, "/ndn");
88 BOOST_CHECK_EQUAL(caItem.probeParameterKeys.size(), 1);
89 BOOST_CHECK_EQUAL(caItem.probeParameterKeys.front(), "full name");
90 BOOST_CHECK_EQUAL(caItem.cert->wireEncode(), cert.wireEncode());
91 BOOST_CHECK_EQUAL(caItem.caInfo, "ndn testbed ca");
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]92 }
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]93 });
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]94 face.receive(interest);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]95 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]96 face.receive(*infoInterest);
97 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]98
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]99 BOOST_CHECK_EQUAL(count, 2);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]100}
101
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]102BOOST_AUTO_TEST_CASE(HandleProbe)
103{
104 auto identity = addIdentity(Name("/ndn"));
105 auto key = identity.getDefaultKey();
106 auto cert = key.getDefaultCertificate();
107
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]108 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]109 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]110 advanceClocks(time::milliseconds(20), 60);
111
112 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]113 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
114 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
115 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]116 paramTLV.encode();
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]117 interest.setApplicationParameters(paramTLV);
118
119 int count = 0;
120 face.onSendData.connect([&](const Data& response) {
121 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]122 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]123 Block contentBlock = response.getContent();
124 contentBlock.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]125 Block probeResponse = contentBlock.get(tlv::ProbeResponse);
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]126 probeResponse.parse();
127 Name caName;
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]128 caName.wireDecode(probeResponse.get(ndn::tlv::Name));
Zhiyi Zhang8683ec92020-10-07 18:18:35 -0700[diff] [blame]129 BOOST_CHECK_EQUAL(caName.size(), 2);
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]130 });
131 face.receive(interest);
132
133 advanceClocks(time::milliseconds(20), 60);
134 BOOST_CHECK_EQUAL(count, 1);
135}
136
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]137BOOST_AUTO_TEST_CASE(HandleProbeUsingDefaultHandler)
138{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]139 auto identity = addIdentity(Name("/ndn"));
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]140 auto key = identity.getDefaultKey();
141 auto cert = key.getDefaultCertificate();
142
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]143 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]144 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]145 advanceClocks(time::milliseconds(20), 60);
146
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]147 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]148 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
149 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
150 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]151 paramTLV.encode();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]152 interest.setApplicationParameters(paramTLV);
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]153
154 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]155 face.onSendData.connect([&](const Data& response) {
156 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]157 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]158 auto contentBlock = response.getContent();
159 contentBlock.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]160 auto probeResponseBlock = contentBlock.get(tlv::ProbeResponse);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]161 probeResponseBlock.parse();
162 Name caPrefix;
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]163 caPrefix.wireDecode(probeResponseBlock.get(ndn::tlv::Name));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]164 BOOST_CHECK(caPrefix != "");
165 });
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]166 face.receive(interest);
167
168 advanceClocks(time::milliseconds(20), 60);
169 BOOST_CHECK_EQUAL(count, 1);
170}
171
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]172BOOST_AUTO_TEST_CASE(HandleProbeRedirection)
173{
174 auto identity = addIdentity(Name("/ndn"));
175 auto key = identity.getDefaultKey();
176 auto cert = key.getDefaultCertificate();
177
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]178 DummyClientFace face(io, m_keyChain, {true, true});
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]179 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-5", "ca-storage-memory");
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]180 advanceClocks(time::milliseconds(20), 60);
181
182 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]183 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
184 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
185 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]186 paramTLV.encode();
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]187 interest.setApplicationParameters(paramTLV);
188
189 int count = 0;
190 face.onSendData.connect([&](const Data& response) {
191 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]192 BOOST_CHECK(verifySignature(response, cert));
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]193 Block contentBlock = response.getContent();
194 contentBlock.parse();
195
196 // Test CA sent redirections
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]197 std::vector<Name> redirectionItems;
198 for (auto item : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]199 if (item.type() == tlv::ProbeRedirect) {
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]200 redirectionItems.push_back(Name(item.blockFromValue()));
201 }
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]202 }
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]203 BOOST_CHECK_EQUAL(redirectionItems.size(), 2);
Tianyuan Yu13aac732022-03-03 20:59:54 -0800[diff] [blame]204 BOOST_CHECK_EQUAL(ndn::security::extractIdentityFromCertName(redirectionItems[0].getPrefix(-1)), "/ndn/edu/ucla");
205 BOOST_CHECK_EQUAL(ndn::security::extractIdentityFromCertName(redirectionItems[1].getPrefix(-1)), "/ndn/edu/ucla/cs/irl");
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]206 });
207 face.receive(interest);
208 advanceClocks(time::milliseconds(20), 60);
209 BOOST_CHECK_EQUAL(count, 1);
210}
211
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]212BOOST_AUTO_TEST_CASE(HandleNew)
213{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]214 auto identity = addIdentity(Name("/ndn"));
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]215 auto key = identity.getDefaultKey();
216 auto cert = key.getDefaultCertificate();
217
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]218 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]219 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]220 advanceClocks(time::milliseconds(20), 60);
221
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]222 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]223 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]224 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]225 requester::Request state(m_keyChain, item, RequestType::NEW);
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]226 auto interest = state.genNewInterest(addIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(),
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]227 time::system_clock::now(),
228 time::system_clock::now() + time::days(1));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]229
230 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]231 face.onSendData.connect([&](const Data& response) {
232 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]233 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]234 auto contentBlock = response.getContent();
235 contentBlock.parse();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]236
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]237 BOOST_CHECK(readString(contentBlock.get(tlv::EcdhPub)) != "");
238 BOOST_CHECK(readString(contentBlock.get(tlv::Salt)) != "");
239 BOOST_CHECK(readString(contentBlock.get(tlv::RequestId)) != "");
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]240
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]241 auto challengeBlockCount = 0;
242 for (auto const& element : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]243 if (element.type() == tlv::Challenge) {
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]244 challengeBlockCount++;
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]245 }
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]246 }
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]247
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]248 BOOST_CHECK(challengeBlockCount != 0);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]249
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]250 auto challengeList = state.onNewRenewRevokeResponse(response);
Zhiyi Zhangc9ada1b2020-10-29 19:13:15 -0700[diff] [blame]251 RequestId requestId;
Zhiyi Zhang8fdb36b2020-10-18 11:58:51 -0700[diff] [blame]252 std::memcpy(requestId.data(), contentBlock.get(tlv::RequestId).value(), contentBlock.get(tlv::RequestId).value_size());
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]253 auto ca_encryption_key = ca.getCaStorage()->getRequest(requestId).encryptionKey;
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]254 BOOST_CHECK_EQUAL_COLLECTIONS(state.m_aesKey.begin(), state.m_aesKey.end(),
Zhiyi Zhang1f9551b2020-10-30 10:30:43 -0700[diff] [blame]255 ca_encryption_key.begin(), ca_encryption_key.end());
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]256 });
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]257 face.receive(*interest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]258
259 advanceClocks(time::milliseconds(20), 60);
260 BOOST_CHECK_EQUAL(count, 1);
261}
262
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]263BOOST_AUTO_TEST_CASE(HandleNewWithInvalidValidityPeriod1)
264{
265 auto identity = addIdentity(Name("/ndn"));
266 auto key = identity.getDefaultKey();
267 auto cert = key.getDefaultCertificate();
268
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]269 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]270 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1");
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]271 advanceClocks(time::milliseconds(20), 60);
272
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]273 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]274 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]275 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]276 requester::Request state(m_keyChain, item, RequestType::NEW);
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]277 auto client = addIdentity(Name("/ndn/zhiyi"));
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]278 auto current_tp = time::system_clock::now();
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]279 auto interest1 = state.genNewInterest(client.getDefaultKey().getName(), current_tp, current_tp - time::hours(1));
280 auto interest2 = state.genNewInterest(client.getDefaultKey().getName(), current_tp, current_tp + time::days(361));
281 auto interest3 = state.genNewInterest(client.getDefaultKey().getName(),
282 current_tp - time::hours(1), current_tp + time::hours(2));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]283 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]284 auto contentTlv = response.getContent();
285 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]286 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]287 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]288 });
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]289 face.receive(*interest1);
290 face.receive(*interest2);
291 face.receive(*interest3);
292
293 advanceClocks(time::milliseconds(20), 60);
294}
295
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]296BOOST_AUTO_TEST_CASE(HandleNewWithServerBadValidity)
297{
298 auto identity = addIdentity(Name("/ndn"));
299 auto key = identity.getDefaultKey();
300
301 //build expired cert
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]302 Certificate cert;
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]303 cert.setName(Name(key.getName()).append("self-sign").appendVersion());
304 cert.setContentType(ndn::tlv::ContentType_Key);
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]305 cert.setContent(key.getPublicKey());
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]306 SignatureInfo signatureInfo;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]307 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod(time::system_clock::now() - time::days(1),
308 time::system_clock::now() - time::seconds(1)));
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]309 m_keyChain.sign(cert, signingByKey(key.getName()).setSignatureInfo(signatureInfo));
310 m_keyChain.setDefaultCertificate(key, cert);
311
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]312 DummyClientFace face(io, m_keyChain, {true, true});
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]313 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
314 advanceClocks(time::milliseconds(20), 60);
315
316 CaProfile item;
317 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]318 item.cert = std::make_shared<Certificate>(cert);
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]319 requester::Request state(m_keyChain, item, RequestType::NEW);
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]320 auto interest = state.genNewInterest(addIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(),
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]321 time::system_clock::now(),
322 time::system_clock::now() + time::days(1));
323
324 int count = 0;
325 face.onSendData.connect([&](const Data& response) {
326 auto contentTlv = response.getContent();
327 contentTlv.parse();
328 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
329 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
330 count ++;
331 });
332 face.receive(*interest);
333
334 advanceClocks(time::milliseconds(20), 60);
335 BOOST_CHECK_EQUAL(count, 1);
336}
337
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]338BOOST_AUTO_TEST_CASE(HandleNewWithLongSuffix)
339{
340 auto identity = addIdentity(Name("/ndn"));
341 auto key = identity.getDefaultKey();
342 auto cert = key.getDefaultCertificate();
343
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]344 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]345 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]346 advanceClocks(time::milliseconds(20), 60);
347
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]348 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]349 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]350 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]351 requester::Request state(m_keyChain, item, RequestType::NEW);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]352
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]353 auto interest1 = state.genNewInterest(addIdentity(Name("/ndn/a")).getDefaultKey().getName(), time::system_clock::now(),
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]354 time::system_clock::now() + time::days(1));
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]355 auto interest2 = state.genNewInterest(addIdentity(Name("/ndn/a/b")).getDefaultKey().getName(), time::system_clock::now(),
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]356 time::system_clock::now() + time::days(1));
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]357 auto interest3 = state.genNewInterest(addIdentity(Name("/ndn/a/b/c/d")).getDefaultKey().getName(), time::system_clock::now(),
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]358 time::system_clock::now() + time::days(1));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]359
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]360 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]361 auto contentTlv = response.getContent();
362 contentTlv.parse();
363 if (interest3->getName().isPrefixOf(response.getName())) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]364 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]365 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
366 }
367 else {
368 // should successfully get responses
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]369 BOOST_CHECK_THROW(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)), std::runtime_error);
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]370 }
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]371 });
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]372 face.receive(*interest1);
373 face.receive(*interest2);
374 face.receive(*interest3);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]375 advanceClocks(time::milliseconds(20), 60);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]376}
377
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]378BOOST_AUTO_TEST_CASE(HandleNewWithInvalidLength1)
379{
380 auto identity = addIdentity(Name("/ndn"));
381 auto key = identity.getDefaultKey();
382 auto cert = key.getDefaultCertificate();
383
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]384 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]385 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1");
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]386 advanceClocks(time::milliseconds(20), 60);
387
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]388 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]389 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]390 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]391 requester::Request state(m_keyChain, item, RequestType::NEW);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]392
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]393 auto current_tp = time::system_clock::now();
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]394 auto interest1 = state.genNewInterest(identity.getDefaultKey().getName(), current_tp, current_tp + time::days(1));
395 auto interest2 = state.genNewInterest(addIdentity(Name("/ndn/a/b/c/d")).getDefaultKey().getName(),
396 current_tp, current_tp + time::days(1));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]397 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]398 auto contentTlv = response.getContent();
399 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]400 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]401 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]402 });
403 face.receive(*interest1);
404 face.receive(*interest2);
405
406 advanceClocks(time::milliseconds(20), 60);
407}
408
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]409BOOST_AUTO_TEST_CASE(HandleChallenge)
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]410{
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]411 auto identity = addIdentity(Name("/ndn"));
412 auto key = identity.getDefaultKey();
413 auto cert = key.getDefaultCertificate();
414
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]415 DummyClientFace face(io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]416 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]417 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]418
419 // generate NEW Interest
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]420 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]421 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]422 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]423 requester::Request state(m_keyChain, item, RequestType::NEW);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]424
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]425 auto newInterest = state.genNewInterest(addIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(), time::system_clock::now(),
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]426 time::system_clock::now() + time::days(1));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]427
428 // generate CHALLENGE Interest
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]429 std::shared_ptr<Interest> challengeInterest;
430 std::shared_ptr<Interest> challengeInterest2;
431 std::shared_ptr<Interest> challengeInterest3;
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]432
433 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]434 face.onSendData.connect([&](const Data& response) {
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]435 if (Name("/ndn/CA/NEW").isPrefixOf(response.getName())) {
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]436 auto challengeList = state.onNewRenewRevokeResponse(response);
437 auto paramList = state.selectOrContinueChallenge("pin");
438 challengeInterest = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]439 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]440 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 0) {
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]441 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]442 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]443
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]444 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]445 BOOST_CHECK(state.m_status == Status::CHALLENGE);
446 BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::NEED_CODE);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]447 auto paramList = state.selectOrContinueChallenge("pin");
448 challengeInterest2 = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]449 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]450 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 1) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]451 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]452 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]453
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]454 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]455 BOOST_CHECK(state.m_status == Status::CHALLENGE);
456 BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::WRONG_CODE);
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]457
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]458 auto paramList = state.selectOrContinueChallenge("pin");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]459 auto request = ca.getCertificateRequest(*challengeInterest2);
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]460 auto secret = request->challengeState->secrets.get(ChallengePin::PARAMETER_KEY_CODE, "");
tylerliu40226332020-11-11 15:37:16 -0800[diff] [blame]461 paramList.begin()->second = secret;
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]462 challengeInterest3 = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]463 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]464 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 2) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]465 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]466 BOOST_CHECK(verifySignature(response, cert));
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]467 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]468 BOOST_CHECK(state.m_status == Status::SUCCESS);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]469 }
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]470 });
471
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]472 face.receive(*newInterest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]473 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]474 face.receive(*challengeInterest);
475 advanceClocks(time::milliseconds(20), 60);
476 face.receive(*challengeInterest2);
477 advanceClocks(time::milliseconds(20), 60);
478 face.receive(*challengeInterest3);
479 advanceClocks(time::milliseconds(20), 60);
480 BOOST_CHECK_EQUAL(count, 3);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]481}
482
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]483BOOST_AUTO_TEST_CASE(HandleRevoke)
484{
485 auto identity = addIdentity(Name("/ndn"));
486 auto key = identity.getDefaultKey();
487 auto cert = key.getDefaultCertificate();
488
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]489 DummyClientFace face(io, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]490 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]491 advanceClocks(time::milliseconds(20), 60);
492
493 //generate a certificate
494 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
495 auto clientKey = clientIdentity.getDefaultKey();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]496 Certificate clientCert;
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]497 clientCert.setName(Name(clientKey.getName()).append("cert-request").appendVersion());
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]498 clientCert.setContentType(ndn::tlv::ContentType_Key);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]499 clientCert.setFreshnessPeriod(time::hours(24));
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]500 clientCert.setContent(clientKey.getPublicKey());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]501 SignatureInfo signatureInfo;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]502 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod(time::system_clock::now(),
503 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]504 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
Zhiyi Zhang1f5e86e2020-12-04 15:07:57 -0800[diff] [blame]505 RequestId requestId = {{101}};
506 RequestState certRequest;
507 certRequest.caPrefix = Name("/ndn");
508 certRequest.requestId = requestId;
509 certRequest.requestType = RequestType::NEW;
510 certRequest.status = Status::SUCCESS;
511 certRequest.cert = clientCert;
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]512 auto issuedCert = ca.issueCertificate(certRequest);
513
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]514 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]515 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]516 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]517 requester::Request state(m_keyChain, item, RequestType::REVOKE);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]518
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]519 auto interest = state.genRevokeInterest(issuedCert);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]520
521 int count = 0;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]522 face.onSendData.connect([&](const Data& response) {
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]523 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]524 BOOST_CHECK(verifySignature(response, cert));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]525 auto contentBlock = response.getContent();
526 contentBlock.parse();
527
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]528 BOOST_CHECK(readString(contentBlock.get(tlv::EcdhPub)) != "");
529 BOOST_CHECK(readString(contentBlock.get(tlv::Salt)) != "");
530 BOOST_CHECK(readString(contentBlock.get(tlv::RequestId)) != "");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]531
532 auto challengeBlockCount = 0;
533 for (auto const& element : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]534 if (element.type() == tlv::Challenge) {
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]535 challengeBlockCount++;
536 }
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]537 }
538
539 BOOST_CHECK(challengeBlockCount != 0);
540
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]541 auto challengeList = state.onNewRenewRevokeResponse(response);
Zhiyi Zhangc9ada1b2020-10-29 19:13:15 -0700[diff] [blame]542 RequestId requestId;
Zhiyi Zhang8fdb36b2020-10-18 11:58:51 -0700[diff] [blame]543 std::memcpy(requestId.data(), contentBlock.get(tlv::RequestId).value(), contentBlock.get(tlv::RequestId).value_size());
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]544 auto ca_encryption_key = ca.getCaStorage()->getRequest(requestId).encryptionKey;
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]545 BOOST_CHECK_EQUAL_COLLECTIONS(state.m_aesKey.begin(), state.m_aesKey.end(),
Zhiyi Zhang1f9551b2020-10-30 10:30:43 -0700[diff] [blame]546 ca_encryption_key.begin(), ca_encryption_key.end());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]547 });
548 face.receive(*interest);
549
550 advanceClocks(time::milliseconds(20), 60);
551 BOOST_CHECK_EQUAL(count, 1);
552}
553
554BOOST_AUTO_TEST_CASE(HandleRevokeWithBadCert)
555{
556 auto identity = addIdentity(Name("/ndn"));
557 auto key = identity.getDefaultKey();
558 auto cert = key.getDefaultCertificate();
559
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]560 DummyClientFace face(io, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]561 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]562 advanceClocks(time::milliseconds(20), 60);
563
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]564 // generate a certificate
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]565 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
566 auto clientKey = clientIdentity.getDefaultKey();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]567 Certificate clientCert;
568 clientCert.setName(Name(clientKey.getName()).append("NDNCERT").append("1473283247810732701"));
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]569 clientCert.setContentType(ndn::tlv::ContentType_Key);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]570 clientCert.setFreshnessPeriod(time::hours(24));
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]571 clientCert.setContent(clientKey.getPublicKey());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]572 SignatureInfo signatureInfo;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]573 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod(time::system_clock::now(),
574 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]575 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
576
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]577 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]578 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]579 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]580 requester::Request state(m_keyChain, item, RequestType::NEW);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]581
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]582 auto interest = state.genRevokeInterest(clientCert);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]583
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]584 bool receiveData = false;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]585 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]586 receiveData = true;
587 auto contentTlv = response.getContent();
588 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]589 BOOST_CHECK(static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode))) != ErrorCode::NO_ERROR);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]590 });
591 face.receive(*interest);
592
593 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]594 BOOST_CHECK_EQUAL(receiveData, true);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]595}
596
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]597BOOST_AUTO_TEST_SUITE_END() // TestCaModule
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]598
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame^]599} // namespace ndncert::tests