Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 842f1f71c541292d620556f5d774bc51b28fc281 / . / tests / unit-tests / ca-module.t.cpp
blob: 9fcee0f81005fb7dd5fa51c6c612866e1af726bf [file] [log] [blame]
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]2/*
Davide Pesavento842f1f72024-02-21 21:27:25 -0500[diff] [blame^]3 * Copyright (c) 2017-2024, Regents of the University of California.
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]4 *
5 * This file is part of ndncert, a certificate management system based on NDN.
6 *
7 * ndncert is free software: you can redistribute it and/or modify it under the terms
8 * of the GNU General Public License as published by the Free Software Foundation, either
9 * version 3 of the License, or (at your option) any later version.
10 *
11 * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License along with
16 * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
17 *
18 * See AUTHORS.md for complete list of ndncert authors and contributors.
19 */
20
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]21#include "ca-module.hpp"
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]22#include "challenge/challenge-pin.hpp"
Zhiyi Zhang062be6d2020-10-14 17:13:43 -0700[diff] [blame]23#include "detail/info-encoder.hpp"
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]24#include "requester-request.hpp"
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]25
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]26#include "tests/boost-test.hpp"
27#include "tests/io-key-chain-fixture.hpp"
28
29#include <ndn-cxx/metadata-object.hpp>
Davide Pesavento842f1f72024-02-21 21:27:25 -0500[diff] [blame^]30#include <ndn-cxx/security/signing-helpers.hpp>
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]31#include <ndn-cxx/security/verification-helpers.hpp>
32#include <ndn-cxx/util/dummy-client-face.hpp>
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]33
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]34namespace ndncert::tests {
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]35
Zhiyi Zhang32d4b4e2020-10-28 22:10:49 -0700[diff] [blame]36using namespace ca;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]37using ndn::security::verifySignature;
Zhiyi Zhang32d4b4e2020-10-28 22:10:49 -0700[diff] [blame]38
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]39BOOST_FIXTURE_TEST_SUITE(TestCaModule, IoKeyChainFixture)
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]40
41BOOST_AUTO_TEST_CASE(Initialization)
42{
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]43 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]44 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]45 BOOST_CHECK_EQUAL(ca.getCaConf().caProfile.caPrefix, "/ndn");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]46
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]47 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]48 BOOST_CHECK_EQUAL(ca.m_registeredPrefixHandles.size(), 1); // removed local discovery registration
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]49 BOOST_CHECK_EQUAL(ca.m_interestFilterHandles.size(), 5); // infoMeta, onProbe, onNew, onChallenge, onRevoke
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]50}
51
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]52BOOST_AUTO_TEST_CASE(HandleProfileFetching)
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]53{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]54 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]55 auto key = identity.getDefaultKey();
56 auto cert = key.getDefaultCertificate();
57
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]58 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]59 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]60 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]61 auto profileData = ca.getCaProfileData();
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]62
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]63 Interest interest = ndn::MetadataObject::makeDiscoveryInterest(Name("/ndn/CA/INFO"));
64 std::shared_ptr<Interest> infoInterest = nullptr;
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]65
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]66 face.setInterestFilter(
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]67 ndn::InterestFilter("/ndn/CA/INFO"),
Zhiyi Zhang696cd042020-10-07 21:27:36 -0700[diff] [blame]68 [&](const auto&, const Interest& interest) {
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]69 if (interest.getName() == profileData.getName()) {
70 face.put(profileData);
71 }
72 },
73 nullptr, nullptr);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]74 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]75
76 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]77 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]78 if (count == 0) {
79 count++;
80 auto block = response.getContent();
81 block.parse();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]82 infoInterest = std::make_shared<Interest>(Name(block.get(ndn::tlv::Name)).appendSegment(0));
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]83 }
84 else {
85 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]86 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]87 auto contentBlock = response.getContent();
88 contentBlock.parse();
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]89 auto caItem = infotlv::decodeDataContent(contentBlock);
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]90 BOOST_CHECK_EQUAL(caItem.caPrefix, "/ndn");
91 BOOST_CHECK_EQUAL(caItem.probeParameterKeys.size(), 1);
92 BOOST_CHECK_EQUAL(caItem.probeParameterKeys.front(), "full name");
93 BOOST_CHECK_EQUAL(caItem.cert->wireEncode(), cert.wireEncode());
94 BOOST_CHECK_EQUAL(caItem.caInfo, "ndn testbed ca");
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]95 }
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]96 });
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]97 face.receive(interest);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]98 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]99 face.receive(*infoInterest);
100 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangcd57da82020-10-08 20:35:40 -0700[diff] [blame]101
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]102 BOOST_CHECK_EQUAL(count, 2);
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]103}
104
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]105BOOST_AUTO_TEST_CASE(HandleProbe)
106{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]107 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]108 auto key = identity.getDefaultKey();
109 auto cert = key.getDefaultCertificate();
110
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]111 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]112 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]113 advanceClocks(time::milliseconds(20), 60);
114
115 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]116 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
117 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
118 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]119 paramTLV.encode();
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]120 interest.setApplicationParameters(paramTLV);
121
122 int count = 0;
123 face.onSendData.connect([&](const Data& response) {
124 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]125 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]126 Block contentBlock = response.getContent();
127 contentBlock.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]128 Block probeResponse = contentBlock.get(tlv::ProbeResponse);
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]129 probeResponse.parse();
130 Name caName;
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]131 caName.wireDecode(probeResponse.get(ndn::tlv::Name));
Zhiyi Zhang8683ec92020-10-07 18:18:35 -0700[diff] [blame]132 BOOST_CHECK_EQUAL(caName.size(), 2);
Zhiyi Zhang6f395812020-09-29 14:42:03 -0700[diff] [blame]133 });
134 face.receive(interest);
135
136 advanceClocks(time::milliseconds(20), 60);
137 BOOST_CHECK_EQUAL(count, 1);
138}
139
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]140BOOST_AUTO_TEST_CASE(HandleProbeUsingDefaultHandler)
141{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]142 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]143 auto key = identity.getDefaultKey();
144 auto cert = key.getDefaultCertificate();
145
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]146 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]147 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]148 advanceClocks(time::milliseconds(20), 60);
149
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]150 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]151 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
152 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
153 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]154 paramTLV.encode();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]155 interest.setApplicationParameters(paramTLV);
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]156
157 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]158 face.onSendData.connect([&](const Data& response) {
159 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]160 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]161 auto contentBlock = response.getContent();
162 contentBlock.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]163 auto probeResponseBlock = contentBlock.get(tlv::ProbeResponse);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]164 probeResponseBlock.parse();
165 Name caPrefix;
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]166 caPrefix.wireDecode(probeResponseBlock.get(ndn::tlv::Name));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]167 BOOST_CHECK(caPrefix != "");
168 });
Zhiyi Zhanga63b7372017-05-17 14:14:34 -0700[diff] [blame]169 face.receive(interest);
170
171 advanceClocks(time::milliseconds(20), 60);
172 BOOST_CHECK_EQUAL(count, 1);
173}
174
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]175BOOST_AUTO_TEST_CASE(HandleProbeRedirection)
176{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]177 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]178 auto key = identity.getDefaultKey();
179 auto cert = key.getDefaultCertificate();
180
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]181 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]182 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-5", "ca-storage-memory");
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]183 advanceClocks(time::milliseconds(20), 60);
184
185 Interest interest("/ndn/CA/PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]186 Block paramTLV = ndn::makeEmptyBlock(ndn::tlv::ApplicationParameters);
187 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterKey, "name"));
188 paramTLV.push_back(ndn::makeStringBlock(tlv::ParameterValue, "zhiyi"));
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]189 paramTLV.encode();
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]190 interest.setApplicationParameters(paramTLV);
191
192 int count = 0;
193 face.onSendData.connect([&](const Data& response) {
194 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]195 BOOST_CHECK(verifySignature(response, cert));
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]196 Block contentBlock = response.getContent();
197 contentBlock.parse();
198
199 // Test CA sent redirections
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]200 std::vector<Name> redirectionItems;
201 for (auto item : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]202 if (item.type() == tlv::ProbeRedirect) {
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]203 redirectionItems.push_back(Name(item.blockFromValue()));
204 }
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]205 }
Zhiyi Zhang34a8d432020-10-03 22:14:25 -0700[diff] [blame]206 BOOST_CHECK_EQUAL(redirectionItems.size(), 2);
Tianyuan Yu13aac732022-03-03 20:59:54 -0800[diff] [blame]207 BOOST_CHECK_EQUAL(ndn::security::extractIdentityFromCertName(redirectionItems[0].getPrefix(-1)), "/ndn/edu/ucla");
208 BOOST_CHECK_EQUAL(ndn::security::extractIdentityFromCertName(redirectionItems[1].getPrefix(-1)), "/ndn/edu/ucla/cs/irl");
Suyong Wone2afeb52020-10-04 03:05:39 +0900[diff] [blame]209 });
210 face.receive(interest);
211 advanceClocks(time::milliseconds(20), 60);
212 BOOST_CHECK_EQUAL(count, 1);
213}
214
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]215BOOST_AUTO_TEST_CASE(HandleNew)
216{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]217 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]218 auto key = identity.getDefaultKey();
219 auto cert = key.getDefaultCertificate();
220
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]221 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]222 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]223 advanceClocks(time::milliseconds(20), 60);
224
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]225 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]226 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]227 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]228 requester::Request state(m_keyChain, item, RequestType::NEW);
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]229 auto interest = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(),
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]230 time::system_clock::now(),
231 time::system_clock::now() + time::days(1));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]232
233 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]234 face.onSendData.connect([&](const Data& response) {
235 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]236 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]237 auto contentBlock = response.getContent();
238 contentBlock.parse();
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]239
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]240 BOOST_CHECK(readString(contentBlock.get(tlv::EcdhPub)) != "");
241 BOOST_CHECK(readString(contentBlock.get(tlv::Salt)) != "");
242 BOOST_CHECK(readString(contentBlock.get(tlv::RequestId)) != "");
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]243
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]244 auto challengeBlockCount = 0;
245 for (auto const& element : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]246 if (element.type() == tlv::Challenge) {
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]247 challengeBlockCount++;
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]248 }
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]249 }
Suyong Won7968f7a2020-05-12 01:01:25 -0700[diff] [blame]250
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]251 BOOST_CHECK(challengeBlockCount != 0);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]252
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]253 auto challengeList = state.onNewRenewRevokeResponse(response);
Zhiyi Zhangc9ada1b2020-10-29 19:13:15 -0700[diff] [blame]254 RequestId requestId;
Zhiyi Zhang8fdb36b2020-10-18 11:58:51 -0700[diff] [blame]255 std::memcpy(requestId.data(), contentBlock.get(tlv::RequestId).value(), contentBlock.get(tlv::RequestId).value_size());
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]256 auto ca_encryption_key = ca.getCaStorage()->getRequest(requestId).encryptionKey;
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]257 BOOST_CHECK_EQUAL_COLLECTIONS(state.m_aesKey.begin(), state.m_aesKey.end(),
Zhiyi Zhang1f9551b2020-10-30 10:30:43 -0700[diff] [blame]258 ca_encryption_key.begin(), ca_encryption_key.end());
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]259 });
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]260 face.receive(*interest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]261
262 advanceClocks(time::milliseconds(20), 60);
263 BOOST_CHECK_EQUAL(count, 1);
264}
265
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]266BOOST_AUTO_TEST_CASE(HandleNewWithInvalidValidityPeriod1)
267{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]268 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]269 auto key = identity.getDefaultKey();
270 auto cert = key.getDefaultCertificate();
271
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]272 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]273 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1");
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]274 advanceClocks(time::milliseconds(20), 60);
275
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]276 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]277 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]278 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]279 requester::Request state(m_keyChain, item, RequestType::NEW);
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]280 auto client = m_keyChain.createIdentity(Name("/ndn/zhiyi"));
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]281 auto current_tp = time::system_clock::now();
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]282 auto interest1 = state.genNewInterest(client.getDefaultKey().getName(), current_tp, current_tp - time::hours(1));
283 auto interest2 = state.genNewInterest(client.getDefaultKey().getName(), current_tp, current_tp + time::days(361));
284 auto interest3 = state.genNewInterest(client.getDefaultKey().getName(),
285 current_tp - time::hours(1), current_tp + time::hours(2));
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]286 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]287 auto contentTlv = response.getContent();
288 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]289 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]290 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]291 });
Zhiyi Zhang1a735bc2019-07-04 21:36:49 -0700[diff] [blame]292 face.receive(*interest1);
293 face.receive(*interest2);
294 face.receive(*interest3);
295
296 advanceClocks(time::milliseconds(20), 60);
297}
298
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]299BOOST_AUTO_TEST_CASE(HandleNewWithServerBadValidity)
300{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]301 auto identity = m_keyChain.createIdentity(Name("/ndn"));
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]302 auto key = identity.getDefaultKey();
303
304 //build expired cert
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]305 Certificate cert;
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]306 cert.setName(Name(key.getName()).append("self-sign").appendVersion());
307 cert.setContentType(ndn::tlv::ContentType_Key);
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]308 cert.setContent(key.getPublicKey());
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]309 SignatureInfo signatureInfo;
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]310 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod::makeRelative(-1_days, -1_s));
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]311 m_keyChain.sign(cert, signingByKey(key.getName()).setSignatureInfo(signatureInfo));
312 m_keyChain.setDefaultCertificate(key, cert);
313
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]314 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]315 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
316 advanceClocks(time::milliseconds(20), 60);
317
318 CaProfile item;
319 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]320 item.cert = std::make_shared<Certificate>(cert);
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]321 requester::Request state(m_keyChain, item, RequestType::NEW);
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]322 auto interest = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(),
tylerliuf62cfeb2021-01-28 11:01:33 -0800[diff] [blame]323 time::system_clock::now(),
324 time::system_clock::now() + time::days(1));
325
326 int count = 0;
327 face.onSendData.connect([&](const Data& response) {
328 auto contentTlv = response.getContent();
329 contentTlv.parse();
330 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
331 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
332 count ++;
333 });
334 face.receive(*interest);
335
336 advanceClocks(time::milliseconds(20), 60);
337 BOOST_CHECK_EQUAL(count, 1);
338}
339
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]340BOOST_AUTO_TEST_CASE(HandleNewWithLongSuffix)
341{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]342 auto identity = m_keyChain.createIdentity(Name("/ndn"));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]343 auto key = identity.getDefaultKey();
344 auto cert = key.getDefaultCertificate();
345
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]346 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]347 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]348 advanceClocks(time::milliseconds(20), 60);
349
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]350 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]351 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]352 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]353 requester::Request state(m_keyChain, item, RequestType::NEW);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]354
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]355 auto interest1 = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/a")).getDefaultKey().getName(),
356 time::system_clock::now(),
357 time::system_clock::now() + time::days(1));
358 auto interest2 = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/a/b")).getDefaultKey().getName(),
359 time::system_clock::now(),
360 time::system_clock::now() + time::days(1));
361 auto interest3 = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/a/b/c/d")).getDefaultKey().getName(),
362 time::system_clock::now(),
363 time::system_clock::now() + time::days(1));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]364
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]365 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]366 auto contentTlv = response.getContent();
367 contentTlv.parse();
368 if (interest3->getName().isPrefixOf(response.getName())) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]369 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]370 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
371 }
372 else {
373 // should successfully get responses
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]374 BOOST_CHECK_THROW(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)), std::runtime_error);
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]375 }
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]376 });
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]377 face.receive(*interest1);
378 face.receive(*interest2);
379 face.receive(*interest3);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]380 advanceClocks(time::milliseconds(20), 60);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]381}
382
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]383BOOST_AUTO_TEST_CASE(HandleNewWithInvalidLength1)
384{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]385 auto identity = m_keyChain.createIdentity(Name("/ndn"));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]386 auto key = identity.getDefaultKey();
387 auto cert = key.getDefaultCertificate();
388
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]389 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]390 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1");
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]391 advanceClocks(time::milliseconds(20), 60);
392
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]393 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]394 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]395 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]396 requester::Request state(m_keyChain, item, RequestType::NEW);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]397
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]398 auto current_tp = time::system_clock::now();
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]399 auto interest1 = state.genNewInterest(identity.getDefaultKey().getName(), current_tp, current_tp + time::days(1));
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]400 auto interest2 = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/a/b/c/d")).getDefaultKey().getName(),
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]401 current_tp, current_tp + time::days(1));
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]402 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]403 auto contentTlv = response.getContent();
404 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]405 auto errorCode = static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode)));
Zhiyi Zhang01e91a32020-09-29 12:10:00 -0700[diff] [blame]406 BOOST_CHECK(errorCode != ErrorCode::NO_ERROR);
tylerliu0b6d0db2020-09-28 17:52:02 -0700[diff] [blame]407 });
408 face.receive(*interest1);
409 face.receive(*interest2);
410
411 advanceClocks(time::milliseconds(20), 60);
412}
413
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]414BOOST_AUTO_TEST_CASE(HandleChallenge)
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]415{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]416 auto identity = m_keyChain.createIdentity(Name("/ndn"));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]417 auto key = identity.getDefaultKey();
418 auto cert = key.getDefaultCertificate();
419
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]420 ndn::DummyClientFace face(m_io, m_keyChain, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]421 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]422 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]423
424 // generate NEW Interest
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]425 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]426 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]427 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]428 requester::Request state(m_keyChain, item, RequestType::NEW);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]429
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]430 auto newInterest = state.genNewInterest(m_keyChain.createIdentity(Name("/ndn/zhiyi")).getDefaultKey().getName(),
431 time::system_clock::now(),
432 time::system_clock::now() + time::days(1));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]433
434 // generate CHALLENGE Interest
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]435 std::shared_ptr<Interest> challengeInterest;
436 std::shared_ptr<Interest> challengeInterest2;
437 std::shared_ptr<Interest> challengeInterest3;
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]438
439 int count = 0;
Zhiyi Zhangfc1678a2020-05-12 16:52:14 -0700[diff] [blame]440 face.onSendData.connect([&](const Data& response) {
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]441 if (Name("/ndn/CA/NEW").isPrefixOf(response.getName())) {
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]442 auto challengeList = state.onNewRenewRevokeResponse(response);
443 auto paramList = state.selectOrContinueChallenge("pin");
444 challengeInterest = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]445 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]446 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 0) {
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]447 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]448 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]449
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]450 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]451 BOOST_CHECK(state.m_status == Status::CHALLENGE);
452 BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::NEED_CODE);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]453 auto paramList = state.selectOrContinueChallenge("pin");
454 challengeInterest2 = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]455 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]456 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 1) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]457 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]458 BOOST_CHECK(verifySignature(response, cert));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]459
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]460 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]461 BOOST_CHECK(state.m_status == Status::CHALLENGE);
462 BOOST_CHECK_EQUAL(state.m_challengeStatus, ChallengePin::WRONG_CODE);
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]463
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]464 auto paramList = state.selectOrContinueChallenge("pin");
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]465 auto request = ca.getCertificateRequest(*challengeInterest2);
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]466 auto secret = request->challengeState->secrets.get(ChallengePin::PARAMETER_KEY_CODE, "");
tylerliu40226332020-11-11 15:37:16 -0800[diff] [blame]467 paramList.begin()->second = secret;
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]468 challengeInterest3 = state.genChallengeInterest(std::move(paramList));
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]469 }
swa770de007bc2020-03-24 21:26:21 -0700[diff] [blame]470 else if (Name("/ndn/CA/CHALLENGE").isPrefixOf(response.getName()) && count == 2) {
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]471 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]472 BOOST_CHECK(verifySignature(response, cert));
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]473 state.onChallengeResponse(response);
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]474 BOOST_CHECK(state.m_status == Status::SUCCESS);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]475 }
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]476 });
Tianyuan Yue78fd4d2022-05-25 13:18:06 -0700[diff] [blame]477 ca.setStatusUpdateCallback([](const RequestState& request) {
478 if (request.status == Status::SUCCESS && request.requestType == RequestType::NEW) {
479 BOOST_REQUIRE_NO_THROW(Certificate{request.cert});
480 BOOST_CHECK(Certificate(request.cert).isValid());
481 }
482 });
Davide Pesavento914d05f2019-07-13 16:20:19 -0400[diff] [blame]483
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]484 face.receive(*newInterest);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]485 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhangaf7c2902019-03-14 22:13:21 -0700[diff] [blame]486 face.receive(*challengeInterest);
487 advanceClocks(time::milliseconds(20), 60);
488 face.receive(*challengeInterest2);
489 advanceClocks(time::milliseconds(20), 60);
490 face.receive(*challengeInterest3);
491 advanceClocks(time::milliseconds(20), 60);
492 BOOST_CHECK_EQUAL(count, 3);
Zhiyi Zhang1c0bd372017-12-18 18:32:55 +0800[diff] [blame]493}
494
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]495BOOST_AUTO_TEST_CASE(HandleRevoke)
496{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]497 auto identity = m_keyChain.createIdentity(Name("/ndn"));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]498 auto key = identity.getDefaultKey();
499 auto cert = key.getDefaultCertificate();
500
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]501 ndn::DummyClientFace face(m_io, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]502 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]503 advanceClocks(time::milliseconds(20), 60);
504
505 //generate a certificate
506 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
507 auto clientKey = clientIdentity.getDefaultKey();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]508 Certificate clientCert;
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]509 clientCert.setName(Name(clientKey.getName()).append("cert-request").appendVersion());
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]510 clientCert.setContentType(ndn::tlv::ContentType_Key);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]511 clientCert.setFreshnessPeriod(time::hours(24));
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]512 clientCert.setContent(clientKey.getPublicKey());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]513 SignatureInfo signatureInfo;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]514 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod(time::system_clock::now(),
515 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]516 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
Zhiyi Zhang1f5e86e2020-12-04 15:07:57 -0800[diff] [blame]517 RequestId requestId = {{101}};
518 RequestState certRequest;
519 certRequest.caPrefix = Name("/ndn");
520 certRequest.requestId = requestId;
521 certRequest.requestType = RequestType::NEW;
522 certRequest.status = Status::SUCCESS;
523 certRequest.cert = clientCert;
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]524 auto issuedCert = ca.issueCertificate(certRequest);
525
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]526 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]527 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]528 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]529 requester::Request state(m_keyChain, item, RequestType::REVOKE);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]530
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]531 auto interest = state.genRevokeInterest(issuedCert);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]532
533 int count = 0;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]534 face.onSendData.connect([&](const Data& response) {
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]535 count++;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]536 BOOST_CHECK(verifySignature(response, cert));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]537 auto contentBlock = response.getContent();
538 contentBlock.parse();
539
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]540 BOOST_CHECK(readString(contentBlock.get(tlv::EcdhPub)) != "");
541 BOOST_CHECK(readString(contentBlock.get(tlv::Salt)) != "");
542 BOOST_CHECK(readString(contentBlock.get(tlv::RequestId)) != "");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]543
544 auto challengeBlockCount = 0;
545 for (auto const& element : contentBlock.elements()) {
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]546 if (element.type() == tlv::Challenge) {
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]547 challengeBlockCount++;
548 }
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]549 }
550
551 BOOST_CHECK(challengeBlockCount != 0);
552
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]553 auto challengeList = state.onNewRenewRevokeResponse(response);
Zhiyi Zhangc9ada1b2020-10-29 19:13:15 -0700[diff] [blame]554 RequestId requestId;
Zhiyi Zhang8fdb36b2020-10-18 11:58:51 -0700[diff] [blame]555 std::memcpy(requestId.data(), contentBlock.get(tlv::RequestId).value(), contentBlock.get(tlv::RequestId).value_size());
tylerliu7b9185c2020-11-24 12:15:18 -0800[diff] [blame]556 auto ca_encryption_key = ca.getCaStorage()->getRequest(requestId).encryptionKey;
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]557 BOOST_CHECK_EQUAL_COLLECTIONS(state.m_aesKey.begin(), state.m_aesKey.end(),
Zhiyi Zhang1f9551b2020-10-30 10:30:43 -0700[diff] [blame]558 ca_encryption_key.begin(), ca_encryption_key.end());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]559 });
560 face.receive(*interest);
561
562 advanceClocks(time::milliseconds(20), 60);
563 BOOST_CHECK_EQUAL(count, 1);
564}
565
566BOOST_AUTO_TEST_CASE(HandleRevokeWithBadCert)
567{
Davide Pesavento829aff62022-05-15 20:30:34 -0400[diff] [blame]568 auto identity = m_keyChain.createIdentity(Name("/ndn"));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]569 auto key = identity.getDefaultKey();
570 auto cert = key.getDefaultCertificate();
571
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]572 ndn::DummyClientFace face(m_io, {true, true});
Zhiyi Zhang9829da92020-09-30 16:19:34 -0700[diff] [blame]573 CaModule ca(face, m_keyChain, "tests/unit-tests/config-files/config-ca-1", "ca-storage-memory");
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]574 advanceClocks(time::milliseconds(20), 60);
575
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]576 // generate a certificate
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]577 auto clientIdentity = m_keyChain.createIdentity("/ndn/qwerty");
578 auto clientKey = clientIdentity.getDefaultKey();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]579 Certificate clientCert;
580 clientCert.setName(Name(clientKey.getName()).append("NDNCERT").append("1473283247810732701"));
Zhiyi Zhang8f1ade32020-10-14 16:42:57 -0700[diff] [blame]581 clientCert.setContentType(ndn::tlv::ContentType_Key);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]582 clientCert.setFreshnessPeriod(time::hours(24));
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]583 clientCert.setContent(clientKey.getPublicKey());
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]584 SignatureInfo signatureInfo;
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]585 signatureInfo.setValidityPeriod(ndn::security::ValidityPeriod(time::system_clock::now(),
586 time::system_clock::now() + time::hours(10)));
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]587 m_keyChain.sign(clientCert, signingByKey(clientKey.getName()).setSignatureInfo(signatureInfo));
588
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]589 CaProfile item;
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]590 item.caPrefix = Name("/ndn");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]591 item.cert = std::make_shared<Certificate>(cert);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]592 requester::Request state(m_keyChain, item, RequestType::NEW);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]593
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]594 auto interest = state.genRevokeInterest(clientCert);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]595
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]596 bool receiveData = false;
Zhiyi Zhang46049832020-09-28 17:08:12 -0700[diff] [blame]597 face.onSendData.connect([&](const Data& response) {
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]598 receiveData = true;
599 auto contentTlv = response.getContent();
600 contentTlv.parse();
tylerliu50d679e2020-10-14 14:08:39 -0700[diff] [blame]601 BOOST_CHECK(static_cast<ErrorCode>(readNonNegativeInteger(contentTlv.get(tlv::ErrorCode))) != ErrorCode::NO_ERROR);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]602 });
603 face.receive(*interest);
604
605 advanceClocks(time::milliseconds(20), 60);
Zhiyi Zhang3e8ca252020-09-30 17:18:38 -0700[diff] [blame]606 BOOST_CHECK_EQUAL(receiveData, true);
tylerliu182bc532020-09-25 01:54:45 -0700[diff] [blame]607}
608
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]609BOOST_AUTO_TEST_SUITE_END() // TestCaModule
Zhiyi Zhangf5246c42017-01-26 09:39:20 -0800[diff] [blame]610
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]611} // namespace ndncert::tests