magic-wormhole/src/wormhole/test/test_wormhole.py

970 lines
36 KiB
Python
Raw Normal View History

from __future__ import print_function, unicode_literals
2017-01-06 16:25:32 +00:00
import os, json, re, gc, io
from binascii import hexlify, unhexlify
2016-05-22 18:31:00 +00:00
import mock
from twisted.trial import unittest
from twisted.internet import reactor
from twisted.internet.defer import Deferred, gatherResults, inlineCallbacks
from .common import ServerBase
from .. import wormhole, _rendezvous
from ..errors import (WrongPasswordError, WelcomeError, InternalError,
2017-03-08 07:45:11 +00:00
KeyFormatError, WormholeClosed, LonelyError,
NoKeyError, OnlyOneCodeError)
from spake2 import SPAKE2_Symmetric
2016-05-22 18:31:00 +00:00
from ..timing import DebugTiming
from ..util import (bytes_to_dict, dict_to_bytes,
hexstr_to_bytes, bytes_to_hexstr)
from nacl.secret import SecretBox
2016-05-22 18:31:00 +00:00
2016-06-04 20:16:09 +00:00
APPID = "appid"
2016-05-22 18:31:00 +00:00
class MockWebSocket:
def __init__(self):
self._payloads = []
def sendMessage(self, payload, is_binary):
assert not is_binary
self._payloads.append(payload)
def outbound(self):
out = []
while self._payloads:
p = self._payloads.pop(0)
out.append(json.loads(p.decode("utf-8")))
return out
def response(w, **kwargs):
payload = json.dumps(kwargs).encode("utf-8")
w._ws_dispatch_response(payload)
class Welcome(unittest.TestCase):
def test_tolerate_no_current_version(self):
2016-06-04 20:16:09 +00:00
w = wormhole._WelcomeHandler("relay_url", "current_cli_version", None)
2016-05-22 18:31:00 +00:00
w.handle_welcome({})
def test_print_motd(self):
2016-06-04 20:16:09 +00:00
w = wormhole._WelcomeHandler("relay_url", "current_cli_version", None)
with mock.patch("sys.stderr") as stderr:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"motd": "message of\nthe day"})
self.assertEqual(stderr.method_calls,
2016-06-04 20:16:09 +00:00
[mock.call.write("Server (at relay_url) says:\n"
" message of\n the day"),
2016-06-04 20:16:09 +00:00
mock.call.write("\n")])
# motd can be displayed multiple times
with mock.patch("sys.stderr") as stderr2:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"motd": "second message"})
self.assertEqual(stderr2.method_calls,
2016-06-04 20:16:09 +00:00
[mock.call.write("Server (at relay_url) says:\n"
" second message"),
2016-06-04 20:16:09 +00:00
mock.call.write("\n")])
def test_current_version(self):
2016-06-04 20:16:09 +00:00
w = wormhole._WelcomeHandler("relay_url", "2.0", None)
with mock.patch("sys.stderr") as stderr:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"current_cli_version": "2.0"})
self.assertEqual(stderr.method_calls, [])
with mock.patch("sys.stderr") as stderr:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"current_cli_version": "3.0"})
exp1 = ("Warning: errors may occur unless both sides are"
" running the same version")
2016-06-04 20:16:09 +00:00
exp2 = ("Server claims 3.0 is current, but ours is 2.0")
self.assertEqual(stderr.method_calls,
[mock.call.write(exp1),
2016-06-04 20:16:09 +00:00
mock.call.write("\n"),
mock.call.write(exp2),
2016-06-04 20:16:09 +00:00
mock.call.write("\n"),
])
# warning is only displayed once
with mock.patch("sys.stderr") as stderr:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"current_cli_version": "3.0"})
self.assertEqual(stderr.method_calls, [])
def test_non_release_version(self):
2016-06-04 20:16:09 +00:00
w = wormhole._WelcomeHandler("relay_url", "2.0-dirty", None)
with mock.patch("sys.stderr") as stderr:
2016-06-04 20:16:09 +00:00
w.handle_welcome({"current_cli_version": "3.0"})
self.assertEqual(stderr.method_calls, [])
def test_signal_error(self):
se = mock.Mock()
2016-06-04 20:16:09 +00:00
w = wormhole._WelcomeHandler("relay_url", "2.0", se)
w.handle_welcome({})
self.assertEqual(se.mock_calls, [])
2016-06-04 20:16:09 +00:00
w.handle_welcome({"error": "oops"})
2016-05-23 07:14:39 +00:00
self.assertEqual(len(se.mock_calls), 1)
self.assertEqual(len(se.mock_calls[0][1]), 2) # posargs
2016-05-23 07:14:39 +00:00
we = se.mock_calls[0][1][0]
self.assertIsInstance(we, WelcomeError)
2016-06-04 20:16:09 +00:00
self.assertEqual(we.args, ("oops",))
mood = se.mock_calls[0][1][1]
2016-06-04 20:16:09 +00:00
self.assertEqual(mood, "unwelcome")
2016-05-23 07:14:39 +00:00
# alas WelcomeError instances don't compare against each other
2016-06-04 20:16:09 +00:00
#self.assertEqual(se.mock_calls, [mock.call(WelcomeError("oops"))])
2016-05-22 18:31:00 +00:00
class Basic(unittest.TestCase):
2016-05-23 07:14:39 +00:00
def tearDown(self):
# flush out any errorful Deferreds left dangling in cycles
gc.collect()
def check_out(self, out, **kwargs):
# Assert that each kwarg is present in the 'out' dict. Ignore other
# keys ('msgid' in particular)
for key, value in kwargs.items():
self.assertIn(key, out)
self.assertEqual(out[key], value, (out, key, value))
def check_outbound(self, ws, types):
out = ws.outbound()
self.assertEqual(len(out), len(types), (out, types))
for i,t in enumerate(types):
2016-06-04 20:16:09 +00:00
self.assertEqual(out[i]["type"], t, (i,t,out))
return out
2016-05-22 18:31:00 +00:00
2016-05-23 07:14:39 +00:00
def make_pake(self, code, side, msg1):
sp2 = SPAKE2_Symmetric(wormhole.to_bytes(code),
idSymmetric=wormhole.to_bytes(APPID))
msg2 = sp2.start()
key = sp2.finish(msg1)
return key, msg2
2016-05-23 07:14:39 +00:00
def test_create(self):
2017-01-06 16:25:32 +00:00
wormhole._Wormhole(APPID, "relay_url", reactor, None, None, None)
2016-05-23 07:14:39 +00:00
2016-05-22 18:31:00 +00:00
def test_basic(self):
# We don't call w._start(), so this doesn't create a WebSocket
# connection. We provide a mock connection instead. If we wanted to
# exercise _connect, we'd mock out WSFactory.
2016-05-22 18:31:00 +00:00
# w._connect = lambda self: None
# w._event_connected(mock_ws)
# w._event_ws_opened()
# w._ws_dispatch_response(payload)
timing = DebugTiming()
with mock.patch("wormhole.wormhole._WelcomeHandler") as wh_c:
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing,
None)
wh = wh_c.return_value
2016-06-04 20:16:09 +00:00
self.assertEqual(w._ws_url, "relay_url")
self.assertTrue(w._flag_need_nameplate)
self.assertTrue(w._flag_need_to_build_msg1)
self.assertTrue(w._flag_need_to_send_PAKE)
v = w.verify()
w._drop_connection = mock.Mock()
2016-05-22 18:31:00 +00:00
ws = MockWebSocket()
w._event_connected(ws)
out = ws.outbound()
self.assertEqual(len(out), 0)
w._event_ws_opened(None)
out = ws.outbound()
self.assertEqual(len(out), 1)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="bind", appid=APPID, side=w._side)
self.assertIn("id", out[0])
2016-05-22 18:31:00 +00:00
# WelcomeHandler should get called upon 'welcome' response. Its full
# behavior is exercised in 'Welcome' above.
2016-06-04 20:16:09 +00:00
WELCOME = {"foo": "bar"}
2016-05-22 18:31:00 +00:00
response(w, type="welcome", welcome=WELCOME)
self.assertEqual(wh.mock_calls, [mock.call.handle_welcome(WELCOME)])
# because we're connected, setting the code also claims the mailbox
2016-06-04 20:16:09 +00:00
CODE = "123-foo-bar"
w.set_code(CODE)
self.assertFalse(w._flag_need_to_build_msg1)
out = ws.outbound()
self.assertEqual(len(out), 1)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="claim", nameplate="123")
# the server reveals the linked mailbox
2016-06-04 20:16:09 +00:00
response(w, type="claimed", mailbox="mb456")
# that triggers event_learned_mailbox, which should send open() and
# PAKE
self.assertEqual(w._mailbox_state, wormhole.OPEN)
out = ws.outbound()
self.assertEqual(len(out), 2)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="open", mailbox="mb456")
self.check_out(out[1], type="add", phase="pake")
self.assertNoResult(v)
# server echoes back all "add" messages
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="pake", body=out[1]["body"],
side=w._side)
self.assertNoResult(v)
# extract our outbound PAKE message
2016-06-04 20:16:09 +00:00
body = bytes_to_dict(hexstr_to_bytes(out[1]["body"]))
msg1 = hexstr_to_bytes(body["pake_v1"])
# next we build the simulated peer's PAKE operation
2016-06-04 20:16:09 +00:00
side2 = w._side + "other"
key, msg2 = self.make_pake(CODE, side2, msg1)
2016-06-04 20:16:09 +00:00
payload = {"pake_v1": bytes_to_hexstr(msg2)}
body_hex = bytes_to_hexstr(dict_to_bytes(payload))
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="pake", body=body_hex, side=side2)
# hearing the peer's PAKE (msg2) makes us release the nameplate, send
# the confirmation message, and sends any queued phase messages. It
# doesn't deliver the verifier because we're still waiting on the
# confirmation message.
self.assertFalse(w._flag_need_to_see_mailbox_used)
self.assertEqual(w._key, key)
out = ws.outbound()
self.assertEqual(len(out), 2, out)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="release")
self.check_out(out[1], type="add", phase="version")
self.assertNoResult(v)
# hearing a valid confirmation message doesn't throw an error
plaintext = json.dumps({}).encode("utf-8")
2016-06-04 20:16:09 +00:00
data_key = w._derive_phase_key(side2, "version")
confmsg = w._encrypt_data(data_key, plaintext)
2016-05-26 02:13:37 +00:00
version2_hex = hexlify(confmsg).decode("ascii")
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="version", body=version2_hex,
side=side2)
# and it releases the verifier
verifier = self.successResultOf(v)
self.assertEqual(verifier,
2016-06-04 20:16:09 +00:00
w.derive_key("wormhole:verifier", SecretBox.KEY_SIZE))
# an outbound message can now be sent immediately
w.send(b"phase0-outbound")
out = ws.outbound()
self.assertEqual(len(out), 1)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="add", phase="0")
# decrypt+check the outbound message
2016-06-04 20:16:09 +00:00
p0_outbound = unhexlify(out[0]["body"].encode("ascii"))
msgkey0 = w._derive_phase_key(w._side, "0")
p0_plaintext = w._decrypt_data(msgkey0, p0_outbound)
self.assertEqual(p0_plaintext, b"phase0-outbound")
# get() waits for the inbound message to arrive
md = w.get()
self.assertNoResult(md)
2016-06-04 20:16:09 +00:00
self.assertIn("0", w._receive_waiters)
self.assertNotIn("0", w._received_messages)
msgkey1 = w._derive_phase_key(side2, "0")
p0_inbound = w._encrypt_data(msgkey1, b"phase0-inbound")
p0_inbound_hex = hexlify(p0_inbound).decode("ascii")
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="0", body=p0_inbound_hex,
side=side2)
p0_in = self.successResultOf(md)
self.assertEqual(p0_in, b"phase0-inbound")
2016-06-04 20:16:09 +00:00
self.assertNotIn("0", w._receive_waiters)
self.assertIn("0", w._received_messages)
# receiving an inbound message will queue it until get() is called
2016-06-04 20:16:09 +00:00
msgkey2 = w._derive_phase_key(side2, "1")
p1_inbound = w._encrypt_data(msgkey2, b"phase1-inbound")
p1_inbound_hex = hexlify(p1_inbound).decode("ascii")
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="1", body=p1_inbound_hex,
side=side2)
2016-06-04 20:16:09 +00:00
self.assertIn("1", w._received_messages)
self.assertNotIn("1", w._receive_waiters)
p1_in = self.successResultOf(w.get())
self.assertEqual(p1_in, b"phase1-inbound")
2016-06-04 20:16:09 +00:00
self.assertIn("1", w._received_messages)
self.assertNotIn("1", w._receive_waiters)
2016-05-24 06:59:49 +00:00
d = w.close()
self.assertNoResult(d)
out = ws.outbound()
self.assertEqual(len(out), 1)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="close", mood="happy")
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="released")
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="closed")
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
w._ws_closed(True, None, None)
2016-05-24 06:59:49 +00:00
self.assertEqual(self.successResultOf(d), None)
2016-05-23 07:14:39 +00:00
def test_close_wait_0(self):
# Close before the connection is established. The connection still
# gets established, but it is then torn down before sending anything.
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
2016-05-24 06:59:49 +00:00
d = w.close()
self.assertNoResult(d)
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
self.assertNoResult(d)
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_wait_1(self):
2016-05-23 07:14:39 +00:00
# close before even claiming the nameplate
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
2016-05-23 07:14:39 +00:00
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-05-24 06:59:49 +00:00
d = w.close()
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind"])
2016-05-23 07:14:39 +00:00
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
self.assertNoResult(d)
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_wait_2(self):
# Close after claiming the nameplate, but before opening the mailbox.
# The 'claimed' response arrives before we close.
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
CODE = "123-foo-bar"
w.set_code(CODE)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind", "claim"])
2016-06-04 20:16:09 +00:00
response(w, type="claimed", mailbox="mb123")
2016-05-24 06:59:49 +00:00
d = w.close()
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["open", "add", "release", "close"])
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="released")
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="closed")
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
self.assertNoResult(d)
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_wait_3(self):
# close after claiming the nameplate, but before opening the mailbox
# The 'claimed' response arrives after we start to close.
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
CODE = "123-foo-bar"
w.set_code(CODE)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind", "claim"])
2016-05-24 06:59:49 +00:00
d = w.close()
2016-06-04 20:16:09 +00:00
response(w, type="claimed", mailbox="mb123")
self.check_outbound(ws, ["release"])
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="released")
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
self.assertNoResult(d)
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_wait_4(self):
# close after both claiming the nameplate and opening the mailbox
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
CODE = "123-foo-bar"
w.set_code(CODE)
2016-06-04 20:16:09 +00:00
response(w, type="claimed", mailbox="mb456")
self.check_outbound(ws, ["bind", "claim", "open", "add"])
2016-05-24 06:59:49 +00:00
d = w.close()
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["release", "close"])
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="released")
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="closed")
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_wait_5(self):
# close after claiming the nameplate, opening the mailbox, then
# releasing the nameplate
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
CODE = "123-foo-bar"
w.set_code(CODE)
2016-06-04 20:16:09 +00:00
response(w, type="claimed", mailbox="mb456")
w._key = b""
2016-06-04 20:16:09 +00:00
msgkey = w._derive_phase_key("side2", "misc")
p1_inbound = w._encrypt_data(msgkey, b"")
p1_inbound_hex = hexlify(p1_inbound).decode("ascii")
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="misc", side="side2",
body=p1_inbound_hex)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind", "claim", "open", "add",
"release"])
2016-05-24 06:59:49 +00:00
d = w.close()
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["close"])
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="released")
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [])
2016-06-04 20:16:09 +00:00
response(w, type="closed")
self.assertNoResult(d)
self.assertEqual(w._drop_connection.mock_calls, [mock.call()])
w._ws_closed(True, None, None)
self.successResultOf(d)
def test_close_errbacks(self):
# make sure the Deferreds returned by verify() and get() are properly
# errbacked upon close
pass
def test_get_code_mock(self):
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
ws = MockWebSocket() # TODO: mock w._ws_send_command instead
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind"])
gc_c = mock.Mock()
gc = gc_c.return_value = mock.Mock()
gc_d = gc.go.return_value = Deferred()
with mock.patch("wormhole.wormhole._GetCode", gc_c):
d = w.get_code()
self.assertNoResult(d)
2016-06-04 20:16:09 +00:00
gc_d.callback("123-foo-bar")
code = self.successResultOf(d)
2016-06-04 20:16:09 +00:00
self.assertEqual(code, "123-foo-bar")
def test_get_code_real(self):
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind"])
d = w.get_code()
out = ws.outbound()
self.assertEqual(len(out), 1)
2016-06-04 20:16:09 +00:00
self.check_out(out[0], type="allocate")
# TODO: nameplate attributes go here
self.assertNoResult(d)
2016-06-04 20:16:09 +00:00
response(w, type="allocated", nameplate="123")
code = self.successResultOf(d)
2016-06-04 20:16:09 +00:00
self.assertIsInstance(code, type(""))
self.assert_(code.startswith("123-"))
pieces = code.split("-")
self.assertEqual(len(pieces), 3) # nameplate plus two words
self.assert_(re.search(r'^\d+-\w+-\w+$', code), code)
def _test_establish_key_hook(self, established, before):
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
if before:
d = w.establish_key()
if established is True:
w._key = b"key"
elif established is False:
w._key = None
else:
w._key = b"key"
w._error = WelcomeError()
if not before:
d = w.establish_key()
else:
w._maybe_notify_key()
if w._key is not None and established is True:
self.successResultOf(d)
elif established is False:
self.assertNot(d.called)
else:
self.failureResultOf(d)
def test_establish_key_hook(self):
for established in (True, False, "error"):
for before in (True, False):
self._test_establish_key_hook(established, before)
def test_establish_key_twice(self):
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
d = w.establish_key()
self.assertRaises(InternalError, w.establish_key)
del d
# make sure verify() can be called both before and after the verifier is
# computed
def _test_verifier(self, when, order, success):
assert when in ("early", "middle", "late")
2016-05-26 02:13:37 +00:00
assert order in ("key-then-version", "version-then-key")
assert isinstance(success, bool)
#print(when, order, success)
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
w._drop_connection = mock.Mock()
w._ws_send_command = mock.Mock()
w._mailbox_state = wormhole.OPEN
2016-06-04 20:16:09 +00:00
side2 = "side2"
d = None
if success:
w._key = b"key"
else:
w._key = b"wrongkey"
plaintext = json.dumps({}).encode("utf-8")
2016-06-04 20:16:09 +00:00
data_key = w._derive_phase_key(side2, "version")
confmsg = w._encrypt_data(data_key, plaintext)
w._key = None
if when == "early":
d = w.verify()
self.assertNoResult(d)
2016-05-26 02:13:37 +00:00
if order == "key-then-version":
w._key = b"key"
w._event_established_key()
else:
2016-05-26 02:13:37 +00:00
w._event_received_version(side2, confmsg)
if when == "middle":
d = w.verify()
if d:
self.assertNoResult(d) # still waiting for other msg
2016-05-26 02:13:37 +00:00
if order == "version-then-key":
w._key = b"key"
w._event_established_key()
else:
2016-05-26 02:13:37 +00:00
w._event_received_version(side2, confmsg)
if when == "late":
d = w.verify()
if success:
self.successResultOf(d)
else:
self.assertFailure(d, wormhole.WrongPasswordError)
self.flushLoggedErrors(WrongPasswordError)
def test_verifier(self):
for when in ("early", "middle", "late"):
2016-05-26 02:13:37 +00:00
for order in ("key-then-version", "version-then-key"):
for success in (False, True):
self._test_verifier(when, order, success)
2016-05-23 07:14:39 +00:00
def test_api_errors(self):
# doing things you're not supposed to do
pass
def test_welcome_error(self):
# A welcome message could arrive at any time, with an [error] key
# that should make us halt. In practice, though, this gets sent as
# soon as the connection is established, which limits the possible
# states in which we might see it.
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
2016-05-23 07:14:39 +00:00
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
self.check_outbound(ws, ["bind"])
2016-05-23 07:14:39 +00:00
d1 = w.get()
d2 = w.verify()
2016-05-23 07:14:39 +00:00
d3 = w.get_code()
# TODO (tricky): test w.input_code
self.assertNoResult(d1)
self.assertNoResult(d2)
self.assertNoResult(d3)
2016-06-04 20:16:09 +00:00
w._signal_error(WelcomeError("you are not actually welcome"), "pouty")
self.failureResultOf(d1, WelcomeError)
self.failureResultOf(d2, WelcomeError)
self.failureResultOf(d3, WelcomeError)
2016-05-23 07:14:39 +00:00
# once the error is signalled, all API calls should fail
2016-06-04 20:16:09 +00:00
self.assertRaises(WelcomeError, w.send, "foo")
self.assertRaises(WelcomeError,
2016-06-04 20:16:09 +00:00
w.derive_key, "foo", SecretBox.KEY_SIZE)
self.failureResultOf(w.get(), WelcomeError)
self.failureResultOf(w.verify(), WelcomeError)
2016-05-23 07:14:39 +00:00
2016-05-26 02:13:37 +00:00
def test_version_error(self):
# we should only receive the "version" message after we receive the
2016-05-23 07:14:39 +00:00
# PAKE message, by which point we should know the key. If the
# confirmation message doesn't decrypt, we signal an error.
timing = DebugTiming()
2017-01-06 16:25:32 +00:00
w = wormhole._Wormhole(APPID, "relay_url", reactor, None, timing, None)
2016-05-23 07:14:39 +00:00
w._drop_connection = mock.Mock()
ws = MockWebSocket()
w._event_connected(ws)
w._event_ws_opened(None)
2016-06-04 20:16:09 +00:00
w.set_code("123-foo-bar")
response(w, type="claimed", mailbox="mb456")
2016-05-23 07:14:39 +00:00
d1 = w.get()
d2 = w.verify()
2016-05-23 07:14:39 +00:00
self.assertNoResult(d1)
self.assertNoResult(d2)
out = ws.outbound()
2016-06-04 20:16:09 +00:00
# ["bind", "claim", "open", "add"]
2016-05-23 07:14:39 +00:00
self.assertEqual(len(out), 4)
2016-06-04 20:16:09 +00:00
self.assertEqual(out[3]["type"], "add")
2016-05-23 07:14:39 +00:00
sp2 = SPAKE2_Symmetric(b"", idSymmetric=wormhole.to_bytes(APPID))
msg2 = sp2.start()
2016-06-04 20:16:09 +00:00
payload = {"pake_v1": bytes_to_hexstr(msg2)}
body_hex = bytes_to_hexstr(dict_to_bytes(payload))
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="pake", body=body_hex, side="s2")
2016-05-23 07:14:39 +00:00
self.assertNoResult(d1)
self.assertNoResult(d2) # verify() waits for confirmation
2016-05-23 07:14:39 +00:00
2016-05-26 02:13:37 +00:00
# sending a random version message will cause a confirmation error
2016-06-04 20:16:09 +00:00
confkey = w.derive_key("WRONG", SecretBox.KEY_SIZE)
2016-05-23 07:14:39 +00:00
nonce = os.urandom(wormhole.CONFMSG_NONCE_LENGTH)
2016-05-26 02:13:37 +00:00
badversion = wormhole.make_confmsg(confkey, nonce)
badversion_hex = hexlify(badversion).decode("ascii")
2016-06-04 20:16:09 +00:00
response(w, type="message", phase="version", body=badversion_hex,
side="s2")
2016-05-23 07:14:39 +00:00
self.failureResultOf(d1, WrongPasswordError)
self.failureResultOf(d2, WrongPasswordError)
2016-05-23 07:14:39 +00:00
# once the error is signalled, all API calls should fail
2016-06-04 20:16:09 +00:00
self.assertRaises(WrongPasswordError, w.send, "foo")
self.assertRaises(WrongPasswordError,
2016-06-04 20:16:09 +00:00
w.derive_key, "foo", SecretBox.KEY_SIZE)
self.failureResultOf(w.get(), WrongPasswordError)
self.failureResultOf(w.verify(), WrongPasswordError)
Basic.skip = "being replaced by test_wormhole_new"
2016-05-23 07:14:39 +00:00
# event orderings to exercise:
#
# * normal sender: set_code, send_phase1, connected, claimed, learn_msg2,
# learn_phase1
# * normal receiver (argv[2]=code): set_code, connected, learn_msg1,
# learn_phase1, send_phase1,
# * normal receiver (readline): connected, input_code
# *
# * set_code, then connected
# * connected, receive_pake, send_phase, set_code
class Wormholes(ServerBase, unittest.TestCase):
# integration test, with a real server
def doBoth(self, d1, d2):
return gatherResults([d1, d2], True)
@inlineCallbacks
def test_basic(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
w1.send(b"data1")
w2.send(b"data2")
dataX = yield w1.when_received()
dataY = yield w2.when_received()
self.assertEqual(dataX, b"data2")
self.assertEqual(dataY, b"data1")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_same_message(self):
# the two sides use random nonces for their messages, so it's ok for
# both to try and send the same body: they'll result in distinct
# encrypted messages
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
w1.send(b"data")
w2.send(b"data")
dataX = yield w1.when_received()
dataY = yield w2.when_received()
self.assertEqual(dataX, b"data")
self.assertEqual(dataY, b"data")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_interleaved(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
w1.send(b"data1")
dataY = yield w2.when_received()
self.assertEqual(dataY, b"data1")
d = w1.when_received()
w2.send(b"data2")
dataX = yield d
self.assertEqual(dataX, b"data2")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_unidirectional(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
w1.send(b"data1")
dataY = yield w2.when_received()
self.assertEqual(dataY, b"data1")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_early(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w1.send(b"data1")
w2 = wormhole.create(APPID, self.relayurl, reactor)
d = w2.when_received()
2016-06-04 20:16:09 +00:00
w1.set_code("123-abc-def")
w2.set_code("123-abc-def")
dataY = yield d
self.assertEqual(dataY, b"data1")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_fixed_code(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
2016-06-04 20:16:09 +00:00
w1.set_code("123-purple-elephant")
w2.set_code("123-purple-elephant")
w1.send(b"data1"), w2.send(b"data2")
dl = yield self.doBoth(w1.when_received(), w2.when_received())
(dataX, dataY) = dl
self.assertEqual(dataX, b"data2")
self.assertEqual(dataY, b"data1")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_multiple_messages(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
2016-06-04 20:16:09 +00:00
w1.set_code("123-purple-elephant")
w2.set_code("123-purple-elephant")
w1.send(b"data1"), w2.send(b"data2")
w1.send(b"data3"), w2.send(b"data4")
dl = yield self.doBoth(w1.when_received(), w2.when_received())
(dataX, dataY) = dl
self.assertEqual(dataX, b"data2")
self.assertEqual(dataY, b"data1")
dl = yield self.doBoth(w1.when_received(), w2.when_received())
(dataX, dataY) = dl
self.assertEqual(dataX, b"data4")
self.assertEqual(dataY, b"data3")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_closed(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.set_code("123-foo")
w2.set_code("123-foo")
# let it connect and become HAPPY
yield w1.when_version()
yield w2.when_version()
yield w1.close()
yield w2.close()
# once closed, all Deferred-yielding API calls get an error
e = yield self.assertFailure(w1.when_code(), WormholeClosed)
self.assertEqual(e.args[0], "happy")
yield self.assertFailure(w1.when_verified(), WormholeClosed)
yield self.assertFailure(w1.when_version(), WormholeClosed)
yield self.assertFailure(w1.when_received(), WormholeClosed)
@inlineCallbacks
def test_wrong_password(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code+"not")
# That's enough to allow both sides to discover the mismatch, but
# only after the confirmation message gets through. API calls that
# don't wait will appear to work until the mismatched confirmation
# message arrives.
w1.send(b"should still work")
w2.send(b"should still work")
# API calls that wait (i.e. get) will errback
yield self.assertFailure(w2.when_received(), WrongPasswordError)
yield self.assertFailure(w1.when_received(), WrongPasswordError)
yield self.assertFailure(w1.when_verified(), WrongPasswordError)
yield self.assertFailure(w1.when_version(), WrongPasswordError)
yield self.assertFailure(w1.close(), WrongPasswordError)
yield self.assertFailure(w2.close(), WrongPasswordError)
2016-06-02 21:07:27 +00:00
@inlineCallbacks
def test_wrong_password_with_spaces(self):
w = wormhole.create(APPID, self.relayurl, reactor)
badcode = "4 oops spaces"
with self.assertRaises(KeyFormatError) as ex:
w.set_code(badcode)
expected_msg = "code (%s) contains spaces." % (badcode,)
self.assertEqual(expected_msg, str(ex.exception))
yield self.assertFailure(w.close(), LonelyError)
2016-06-02 21:07:27 +00:00
@inlineCallbacks
def test_verifier(self):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
v1 = yield w1.when_verified()
v2 = yield w2.when_verified()
self.failUnlessEqual(type(v1), type(b""))
self.failUnlessEqual(v1, v2)
w1.send(b"data1")
w2.send(b"data2")
dataX = yield w1.when_received()
dataY = yield w2.when_received()
self.assertEqual(dataX, b"data2")
self.assertEqual(dataY, b"data1")
2016-05-24 06:59:49 +00:00
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_versions(self):
# there's no API for this yet, but make sure the internals work
w1 = wormhole.create(APPID, self.relayurl, reactor,
versions={"w1": 123})
w2 = wormhole.create(APPID, self.relayurl, reactor,
versions={"w2": 456})
w1.allocate_code()
code = yield w1.when_code()
w2.set_code(code)
w1_versions = yield w2.when_version()
self.assertEqual(w1_versions, {"w1": 123})
w2_versions = yield w1.when_version()
self.assertEqual(w2_versions, {"w2": 456})
yield w1.close()
yield w2.close()
@inlineCallbacks
def test_rx_dedup(self):
# Future clients will handle losing/reestablishing the Rendezvous
# Server connection by retransmitting messages, which will sometimes
# cause duplicate messages. Make sure this client can tolerate them.
# The first place this would fail was when the second copy of the
# incoming PAKE message was received, which would cause
# SPAKE2.finish() to be called a second time, which throws an error
# (which, being somewhat unexpected, caused a hang rather than a
# clear exception). The Mailbox object is responsible for
# deduplication, so we must patch the RendezvousConnector to simulate
# duplicated messages.
with mock.patch("wormhole._boss.RendezvousConnector", MessageDoubler):
w1 = wormhole.create(APPID, self.relayurl, reactor)
w2 = wormhole.create(APPID, self.relayurl, reactor)
w1.set_code("123-purple-elephant")
w2.set_code("123-purple-elephant")
w1.send(b"data1"), w2.send(b"data2")
dl = yield self.doBoth(w1.when_received(), w2.when_received())
(dataX, dataY) = dl
self.assertEqual(dataX, b"data2")
self.assertEqual(dataY, b"data1")
yield w1.close()
yield w2.close()
class MessageDoubler(_rendezvous.RendezvousConnector):
# we could double messages on the sending side, but a future server will
# strip those duplicates, so to really exercise the receiver, we must
# double them on the inbound side instead
#def _msg_send(self, phase, body):
# wormhole._Wormhole._msg_send(self, phase, body)
# self._ws_send_command("add", phase=phase, body=bytes_to_hexstr(body))
def _response_handle_message(self, msg):
_rendezvous.RendezvousConnector._response_handle_message(self, msg)
_rendezvous.RendezvousConnector._response_handle_message(self, msg)
class Errors(ServerBase, unittest.TestCase):
@inlineCallbacks
2017-03-08 07:45:11 +00:00
def test_derive_key_early(self):
w = wormhole.create(APPID, self.relayurl, reactor)
# definitely too early
2017-03-08 07:45:11 +00:00
self.assertRaises(NoKeyError, w.derive_key, "purpose", 12)
yield self.assertFailure(w.close(), LonelyError)
2017-03-08 07:45:11 +00:00
@inlineCallbacks
def test_multiple_set_code(self):
w = wormhole.create(APPID, self.relayurl, reactor)
2016-06-04 20:16:09 +00:00
w.set_code("123-purple-elephant")
# code can only be set once
2017-03-08 07:45:11 +00:00
self.assertRaises(OnlyOneCodeError, w.set_code, "123-nope")
yield self.assertFailure(w.close(), LonelyError)
@inlineCallbacks
2017-03-08 07:45:11 +00:00
def test_allocate_and_set_code(self):
w = wormhole.create(APPID, self.relayurl, reactor)
2017-03-08 07:45:11 +00:00
w.allocate_code()
yield w.when_code()
2017-03-08 07:45:11 +00:00
self.assertRaises(OnlyOneCodeError, w.set_code, "123-nope")
yield self.assertFailure(w.close(), LonelyError)