lox/crates/lox-library/src/tests.rs

/*! Unit tests that require access to the testing-only function
BridgeLine::random() or private fields */

use super::bridge_table::BridgeLine;
use super::proto::*;
use super::*;

#[test]
fn test_open_invite() {
    // Create a BridegDb
    let bdb = BridgeDb::new(20);
    // Create a BridgeAuth
    let mut ba = BridgeAuth::new(bdb.pubkey);

    // Make 20 buckets with one random bridge each
    for _ in 0..20 {
        let bucket: [BridgeLine; 3] =
            [BridgeLine::random(), Default::default(), Default::default()];
        ba.bridge_table.new_bucket(bucket);
    }
    // And 20 more with three random bridges each
    for _ in 0..20 {
        let bucket: [BridgeLine; 3] = [
            BridgeLine::random(),
            BridgeLine::random(),
            BridgeLine::random(),
        ];
        ba.bridge_table.new_bucket(bucket);
    }
    // Create the encrypted bridge table
    ba.enc_bridge_table();

    // Issue an open invitation
    let inv = bdb.invite();

    // Use it to get a Lox credential
    let (req, state) = open_invite::request(&inv);
    let resp = ba.handle_open_invite(req).unwrap();
    let cred = open_invite::handle_response(state, resp, &ba.lox_pub, &ba.migration_pub).unwrap();

    // Check that we can use the credential to read a bucket
    let (id, key) = bridge_table::from_scalar(cred.bucket).unwrap();
    let encbuckets = ba.enc_bridge_table();
    let bucket =
        bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();
    println!("cred = {:?}", cred);
    println!("bucket = {:?}", bucket);
    assert!(bucket.1.is_none());
    assert!(ba.verify_lox(&cred));
}

fn setup() -> (BridgeDb, BridgeAuth) {
    // Create a BridegDb
    let bdb = BridgeDb::new(15);
    // Create a BridgeAuth
    let mut ba = BridgeAuth::new(bdb.pubkey);

    // Make 15 buckets with one random bridge each
    for _ in 0..15 {
        let bucket: [BridgeLine; 3] =
            [BridgeLine::random(), Default::default(), Default::default()];
        ba.bridge_table.new_bucket(bucket);
    }
    // Make 5 more buckets, each containing 3 of the previously
    // created bridges
    for i in 0u32..5 {
        let iusize = i as usize;
        let bucket: [BridgeLine; 3] = [
            ba.bridge_table.buckets[3 * iusize][0],
            ba.bridge_table.buckets[3 * iusize + 1][0],
            ba.bridge_table.buckets[3 * iusize + 2][0],
        ];
        ba.bridge_table.new_bucket(bucket);
        // Add the allowed migrations to the migration table
        ba.migration_table.table.insert(3 * i, 15 + i);
        ba.migration_table.table.insert(3 * i + 1, 15 + i);
        ba.migration_table.table.insert(3 * i + 2, 15 + i);
    }
    // Create the encrypted bridge table
    ba.enc_bridge_table();

    (bdb, ba)
}

fn trust_promotion(bdb: &BridgeDb, ba: &mut BridgeAuth) -> (cred::Lox, cred::Migration) {
    // Issue an open invitation
    let inv = bdb.invite();

    // Use it to get a Lox credential
    let (req, state) = open_invite::request(&inv);
    let resp = ba.handle_open_invite(req).unwrap();
    let cred = open_invite::handle_response(state, resp, &ba.lox_pub, &ba.migration_pub).unwrap();
    assert!(ba.verify_lox(&cred));

    // Time passes
    ba.advance_days(47);

    let (promreq, promstate) = trust_promotion::request(&cred, &ba.lox_pub, ba.today()).unwrap();
    let promresp = ba.handle_trust_promotion(promreq).unwrap();
    let migcred = trust_promotion::handle_response(promstate, promresp).unwrap();

    (cred, migcred)
}

#[test]
fn test_trust_promotion() {
    let (bdb, mut ba) = setup();

    let (_loxcred, migcred) = trust_promotion(&bdb, &mut ba);

    assert!(ba.verify_migration(&migcred));
    // Check that we can use the to_bucket in the Migration credenital
    // to read a bucket
    let (id, key) = bridge_table::from_scalar(migcred.to_bucket).unwrap();
    let encbuckets = ba.enc_bridge_table();
    let bucket =
        bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();
    println!("bucket = {:?}", bucket);
    assert!(ba.verify_reachability(&bucket.1.unwrap()));
}

#[test]
fn test_level0_migration() {
    let (bdb, mut ba) = setup();

    let (loxcred, migcred) = trust_promotion(&bdb, &mut ba);

    let (migreq, migstate) =
        migration::request(&loxcred, &migcred, &ba.lox_pub, &ba.migration_pub).unwrap();
    let migresp = ba.handle_migration(migreq).unwrap();
    let newloxcred =
        migration::handle_response(migstate, migresp, &ba.lox_pub, &ba.migration_pub).unwrap();
    assert!(ba.verify_lox(&newloxcred));
    println!("newloxcred = {:?}", newloxcred);
    // Check that we can use the credenital to read a bucket
    let (id, key) = bridge_table::from_scalar(newloxcred.bucket).unwrap();
    let encbuckets = ba.enc_bridge_table();
    let bucket =
        bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();
    println!("bucket = {:?}", bucket);
    assert!(ba.verify_reachability(&bucket.1.unwrap()));
}
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`/*! Unit tests that require access to the testing-only function`
			`BridgeLine::random() or private fields */`

			`use super::bridge_table::BridgeLine;`
Moved protocol modules into submodules of "proto" module instead of all being at the top level 2021-05-01 15:21:50 -04:00			`use super::proto::*;`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`use super::*;`

			`#[test]`
			`fn test_open_invite() {`
			`// Create a BridegDb`
			`let bdb = BridgeDb::new(20);`
			`// Create a BridgeAuth`
			`let mut ba = BridgeAuth::new(bdb.pubkey);`

			`// Make 20 buckets with one random bridge each`
			`for _ in 0..20 {`
			`let bucket: [BridgeLine; 3] =`
			`[BridgeLine::random(), Default::default(), Default::default()];`
			`ba.bridge_table.new_bucket(bucket);`
			`}`
			`// And 20 more with three random bridges each`
			`for _ in 0..20 {`
			`let bucket: [BridgeLine; 3] = [`
			`BridgeLine::random(),`
			`BridgeLine::random(),`
			`BridgeLine::random(),`
			`];`
			`ba.bridge_table.new_bucket(bucket);`
			`}`
			`// Create the encrypted bridge table`
Create Bucket Reachability credentials and put them in buckets as appropriate 2021-05-01 17:12:03 -04:00			`ba.enc_bridge_table();`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00
			`// Issue an open invitation`
			`let inv = bdb.invite();`

			`// Use it to get a Lox credential`
			`let (req, state) = open_invite::request(&inv);`
			`let resp = ba.handle_open_invite(req).unwrap();`
The request message of the trust promotion protocol 2021-04-29 18:22:06 -04:00			`let cred = open_invite::handle_response(state, resp, &ba.lox_pub, &ba.migration_pub).unwrap();`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00
			`// Check that we can use the credential to read a bucket`
			`let (id, key) = bridge_table::from_scalar(cred.bucket).unwrap();`
Create Bucket Reachability credentials and put them in buckets as appropriate 2021-05-01 17:12:03 -04:00			`let encbuckets = ba.enc_bridge_table();`
			`let bucket =`
			`bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`println!("cred = {:?}", cred);`
			`println!("bucket = {:?}", bucket);`
Check the MACs on the Bucket Reachability credentials in the tests 2021-05-01 17:19:34 -04:00			`assert!(bucket.1.is_none());`
Check the proof in the request message of the trust promotion protocol 2021-04-29 21:24:32 -04:00			`assert!(ba.verify_lox(&cred));`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`}`

The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00			`fn setup() -> (BridgeDb, BridgeAuth) {`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`// Create a BridegDb`
			`let bdb = BridgeDb::new(15);`
			`// Create a BridgeAuth`
			`let mut ba = BridgeAuth::new(bdb.pubkey);`

			`// Make 15 buckets with one random bridge each`
			`for _ in 0..15 {`
			`let bucket: [BridgeLine; 3] =`
			`[BridgeLine::random(), Default::default(), Default::default()];`
			`ba.bridge_table.new_bucket(bucket);`
			`}`
			`// Make 5 more buckets, each containing 3 of the previously`
			`// created bridges`
			`for i in 0u32..5 {`
			`let iusize = i as usize;`
			`let bucket: [BridgeLine; 3] = [`
			`ba.bridge_table.buckets[3 * iusize][0],`
			`ba.bridge_table.buckets[3 * iusize + 1][0],`
			`ba.bridge_table.buckets[3 * iusize + 2][0],`
			`];`
			`ba.bridge_table.new_bucket(bucket);`
			`// Add the allowed migrations to the migration table`
The response message of the trust promotion protocol 2021-04-30 11:58:31 -04:00			`ba.migration_table.table.insert(3 * i, 15 + i);`
			`ba.migration_table.table.insert(3 * i + 1, 15 + i);`
			`ba.migration_table.table.insert(3 * i + 2, 15 + i);`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`}`
			`// Create the encrypted bridge table`
Create Bucket Reachability credentials and put them in buckets as appropriate 2021-05-01 17:12:03 -04:00			`ba.enc_bridge_table();`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00
The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00			`(bdb, ba)`
			`}`

			`fn trust_promotion(bdb: &BridgeDb, ba: &mut BridgeAuth) -> (cred::Lox, cred::Migration) {`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`// Issue an open invitation`
			`let inv = bdb.invite();`

			`// Use it to get a Lox credential`
			`let (req, state) = open_invite::request(&inv);`
			`let resp = ba.handle_open_invite(req).unwrap();`
The request message of the trust promotion protocol 2021-04-29 18:22:06 -04:00			`let cred = open_invite::handle_response(state, resp, &ba.lox_pub, &ba.migration_pub).unwrap();`
Check the proof in the request message of the trust promotion protocol 2021-04-29 21:24:32 -04:00			`assert!(ba.verify_lox(&cred));`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00
			`// Time passes`
Check the proof in the request message of the trust promotion protocol 2021-04-29 21:24:32 -04:00			`ba.advance_days(47);`
The request message of the trust promotion protocol 2021-04-29 18:22:06 -04:00
			`let (promreq, promstate) = trust_promotion::request(&cred, &ba.lox_pub, ba.today()).unwrap();`
Handle the response of the trust promotion protocol to produce the Migration credential 2021-04-30 13:30:20 -04:00			`let promresp = ba.handle_trust_promotion(promreq).unwrap();`
			`let migcred = trust_promotion::handle_response(promstate, promresp).unwrap();`
The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00
			`(cred, migcred)`
			`}`

			`#[test]`
			`fn test_trust_promotion() {`
			`let (bdb, mut ba) = setup();`

			`let (_loxcred, migcred) = trust_promotion(&bdb, &mut ba);`

Handle the response of the trust promotion protocol to produce the Migration credential 2021-04-30 13:30:20 -04:00			`assert!(ba.verify_migration(&migcred));`
			`// Check that we can use the to_bucket in the Migration credenital`
			`// to read a bucket`
			`let (id, key) = bridge_table::from_scalar(migcred.to_bucket).unwrap();`
Create Bucket Reachability credentials and put them in buckets as appropriate 2021-05-01 17:12:03 -04:00			`let encbuckets = ba.enc_bridge_table();`
			`let bucket =`
			`bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();`
Handle the response of the trust promotion protocol to produce the Migration credential 2021-04-30 13:30:20 -04:00			`println!("bucket = {:?}", bucket);`
Check the MACs on the Bucket Reachability credentials in the tests 2021-05-01 17:19:34 -04:00			`assert!(ba.verify_reachability(&bucket.1.unwrap()));`
Move unit tests to their own file 2021-04-29 16:12:53 -04:00			`}`
The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00
			`#[test]`
			`fn test_level0_migration() {`
			`let (bdb, mut ba) = setup();`

			`let (loxcred, migcred) = trust_promotion(&bdb, &mut ba);`

			`let (migreq, migstate) =`
			`migration::request(&loxcred, &migcred, &ba.lox_pub, &ba.migration_pub).unwrap();`
			`let migresp = ba.handle_migration(migreq).unwrap();`
			`let newloxcred =`
			`migration::handle_response(migstate, migresp, &ba.lox_pub, &ba.migration_pub).unwrap();`
			`assert!(ba.verify_lox(&newloxcred));`
			`println!("newloxcred = {:?}", newloxcred);`
			`// Check that we can use the credenital to read a bucket`
			`let (id, key) = bridge_table::from_scalar(newloxcred.bucket).unwrap();`
Create Bucket Reachability credentials and put them in buckets as appropriate 2021-05-01 17:12:03 -04:00			`let encbuckets = ba.enc_bridge_table();`
			`let bucket =`
			`bridge_table::BridgeTable::decrypt_bucket(id, &key, &encbuckets[id as usize]).unwrap();`
The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00			`println!("bucket = {:?}", bucket);`
Check the MACs on the Bucket Reachability credentials in the tests 2021-05-01 17:19:34 -04:00			`assert!(ba.verify_reachability(&bucket.1.unwrap()));`
The complete migration protocol for the case of migrating from trust level 0 to trust level 1 2021-04-30 16:24:42 -04:00			`}`