2017-03-03 07:59:53 +00:00
|
|
|
from __future__ import print_function, unicode_literals
|
|
|
|
import json
|
2017-03-19 17:38:35 +00:00
|
|
|
import mock
|
2017-03-19 16:35:05 +00:00
|
|
|
from zope.interface import directlyProvides, implementer
|
2017-03-03 07:59:53 +00:00
|
|
|
from twisted.trial import unittest
|
2017-03-19 20:03:48 +00:00
|
|
|
from .. import (errors, timing, _order, _receive, _key, _code, _lister, _boss,
|
2017-06-26 17:49:13 +00:00
|
|
|
_input, _allocator, _send, _terminator, _nameplate, _mailbox,
|
|
|
|
_rendezvous)
|
2017-03-19 19:03:00 +00:00
|
|
|
from .._interfaces import (IKey, IReceive, IBoss, ISend, IMailbox, IOrder,
|
2017-03-19 16:35:05 +00:00
|
|
|
IRendezvousConnector, ILister, IInput, IAllocator,
|
2017-03-19 19:03:00 +00:00
|
|
|
INameplate, ICode, IWordlist, ITerminator)
|
2017-03-03 07:59:53 +00:00
|
|
|
from .._key import derive_key, derive_phase_key, encrypt_data
|
2017-03-19 20:03:48 +00:00
|
|
|
from ..journal import ImmediateJournal
|
2017-06-26 17:49:13 +00:00
|
|
|
from ..util import (dict_to_bytes, bytes_to_dict,
|
|
|
|
hexstr_to_bytes, bytes_to_hexstr, to_bytes)
|
2017-03-03 07:59:53 +00:00
|
|
|
from spake2 import SPAKE2_Symmetric
|
2017-03-19 17:38:35 +00:00
|
|
|
from nacl.secret import SecretBox
|
2017-03-03 07:59:53 +00:00
|
|
|
|
2017-03-19 16:35:05 +00:00
|
|
|
@implementer(IWordlist)
|
|
|
|
class FakeWordList(object):
|
|
|
|
def choose_words(self, length):
|
|
|
|
return "-".join(["word"] * length)
|
|
|
|
def get_completions(self, prefix):
|
|
|
|
self._get_completions_prefix = prefix
|
|
|
|
return self._completions
|
|
|
|
|
2017-03-03 07:59:53 +00:00
|
|
|
class Dummy:
|
|
|
|
def __init__(self, name, events, iface, *meths):
|
|
|
|
self.name = name
|
|
|
|
self.events = events
|
2017-03-19 20:03:48 +00:00
|
|
|
if iface:
|
|
|
|
directlyProvides(self, iface)
|
2017-03-03 07:59:53 +00:00
|
|
|
for meth in meths:
|
|
|
|
self.mock(meth)
|
2017-03-19 22:09:26 +00:00
|
|
|
self.retval = None
|
2017-03-03 07:59:53 +00:00
|
|
|
def mock(self, meth):
|
|
|
|
def log(*args):
|
|
|
|
self.events.append(("%s.%s" % (self.name, meth),) + args)
|
2017-03-19 22:09:26 +00:00
|
|
|
return self.retval
|
2017-03-03 07:59:53 +00:00
|
|
|
setattr(self, meth, log)
|
|
|
|
|
2017-03-19 17:38:35 +00:00
|
|
|
class Send(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
s = _send.Send(u"side", timing.DebugTiming())
|
|
|
|
m = Dummy("m", events, IMailbox, "add_message")
|
|
|
|
s.wire(m)
|
|
|
|
return s, m, events
|
|
|
|
|
|
|
|
def test_send_first(self):
|
|
|
|
s, m, events = self.build()
|
|
|
|
s.send("phase1", b"msg")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
key = b"\x00" * 32
|
|
|
|
nonce1 = b"\x00" * SecretBox.NONCE_SIZE
|
|
|
|
with mock.patch("nacl.utils.random", side_effect=[nonce1]) as r:
|
|
|
|
s.got_verified_key(key)
|
|
|
|
self.assertEqual(r.mock_calls, [mock.call(SecretBox.NONCE_SIZE)])
|
|
|
|
#print(bytes_to_hexstr(events[0][2]))
|
|
|
|
enc1 = hexstr_to_bytes("00000000000000000000000000000000000000000000000022f1a46c3c3496423c394621a2a5a8cf275b08")
|
|
|
|
self.assertEqual(events, [("m.add_message", "phase1", enc1)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
nonce2 = b"\x02" * SecretBox.NONCE_SIZE
|
|
|
|
with mock.patch("nacl.utils.random", side_effect=[nonce2]) as r:
|
|
|
|
s.send("phase2", b"msg")
|
|
|
|
self.assertEqual(r.mock_calls, [mock.call(SecretBox.NONCE_SIZE)])
|
|
|
|
enc2 = hexstr_to_bytes("0202020202020202020202020202020202020202020202026660337c3eac6513c0dac9818b62ef16d9cd7e")
|
|
|
|
self.assertEqual(events, [("m.add_message", "phase2", enc2)])
|
|
|
|
|
|
|
|
def test_key_first(self):
|
|
|
|
s, m, events = self.build()
|
|
|
|
key = b"\x00" * 32
|
|
|
|
s.got_verified_key(key)
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
nonce1 = b"\x00" * SecretBox.NONCE_SIZE
|
|
|
|
with mock.patch("nacl.utils.random", side_effect=[nonce1]) as r:
|
|
|
|
s.send("phase1", b"msg")
|
|
|
|
self.assertEqual(r.mock_calls, [mock.call(SecretBox.NONCE_SIZE)])
|
|
|
|
enc1 = hexstr_to_bytes("00000000000000000000000000000000000000000000000022f1a46c3c3496423c394621a2a5a8cf275b08")
|
|
|
|
self.assertEqual(events, [("m.add_message", "phase1", enc1)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
nonce2 = b"\x02" * SecretBox.NONCE_SIZE
|
|
|
|
with mock.patch("nacl.utils.random", side_effect=[nonce2]) as r:
|
|
|
|
s.send("phase2", b"msg")
|
|
|
|
self.assertEqual(r.mock_calls, [mock.call(SecretBox.NONCE_SIZE)])
|
|
|
|
enc2 = hexstr_to_bytes("0202020202020202020202020202020202020202020202026660337c3eac6513c0dac9818b62ef16d9cd7e")
|
|
|
|
self.assertEqual(events, [("m.add_message", "phase2", enc2)])
|
|
|
|
|
|
|
|
|
|
|
|
|
2017-03-03 07:59:53 +00:00
|
|
|
class Order(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
o = _order.Order(u"side", timing.DebugTiming())
|
|
|
|
k = Dummy("k", events, IKey, "got_pake")
|
|
|
|
r = Dummy("r", events, IReceive, "got_message")
|
|
|
|
o.wire(k, r)
|
|
|
|
return o, k, r, events
|
|
|
|
|
|
|
|
def test_in_order(self):
|
|
|
|
o, k, r, events = self.build()
|
|
|
|
o.got_message(u"side", u"pake", b"body")
|
|
|
|
self.assertEqual(events, [("k.got_pake", b"body")]) # right away
|
|
|
|
o.got_message(u"side", u"version", b"body")
|
|
|
|
o.got_message(u"side", u"1", b"body")
|
|
|
|
self.assertEqual(events,
|
|
|
|
[("k.got_pake", b"body"),
|
|
|
|
("r.got_message", u"side", u"version", b"body"),
|
|
|
|
("r.got_message", u"side", u"1", b"body"),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_out_of_order(self):
|
|
|
|
o, k, r, events = self.build()
|
|
|
|
o.got_message(u"side", u"version", b"body")
|
|
|
|
self.assertEqual(events, []) # nothing yet
|
|
|
|
o.got_message(u"side", u"1", b"body")
|
|
|
|
self.assertEqual(events, []) # nothing yet
|
|
|
|
o.got_message(u"side", u"pake", b"body")
|
|
|
|
# got_pake is delivered first
|
|
|
|
self.assertEqual(events,
|
|
|
|
[("k.got_pake", b"body"),
|
|
|
|
("r.got_message", u"side", u"version", b"body"),
|
|
|
|
("r.got_message", u"side", u"1", b"body"),
|
|
|
|
])
|
|
|
|
|
|
|
|
class Receive(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
r = _receive.Receive(u"side", timing.DebugTiming())
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
b = Dummy("b", events, IBoss,
|
|
|
|
"happy", "scared", "got_verifier", "got_message")
|
2017-03-03 07:59:53 +00:00
|
|
|
s = Dummy("s", events, ISend, "got_verified_key")
|
|
|
|
r.wire(b, s)
|
|
|
|
return r, b, s, events
|
|
|
|
|
|
|
|
def test_good(self):
|
|
|
|
r, b, s, events = self.build()
|
|
|
|
key = b"key"
|
|
|
|
r.got_key(key)
|
|
|
|
self.assertEqual(events, [])
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
verifier = derive_key(key, b"wormhole:verifier")
|
2017-03-03 07:59:53 +00:00
|
|
|
phase1_key = derive_phase_key(key, u"side", u"phase1")
|
|
|
|
data1 = b"data1"
|
|
|
|
good_body = encrypt_data(phase1_key, data1)
|
|
|
|
r.got_message(u"side", u"phase1", good_body)
|
|
|
|
self.assertEqual(events, [("s.got_verified_key", key),
|
|
|
|
("b.happy",),
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
("b.got_verifier", verifier),
|
2017-03-03 07:59:53 +00:00
|
|
|
("b.got_message", u"phase1", data1),
|
|
|
|
])
|
|
|
|
|
|
|
|
phase2_key = derive_phase_key(key, u"side", u"phase2")
|
|
|
|
data2 = b"data2"
|
|
|
|
good_body = encrypt_data(phase2_key, data2)
|
|
|
|
r.got_message(u"side", u"phase2", good_body)
|
|
|
|
self.assertEqual(events, [("s.got_verified_key", key),
|
|
|
|
("b.happy",),
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
("b.got_verifier", verifier),
|
2017-03-03 07:59:53 +00:00
|
|
|
("b.got_message", u"phase1", data1),
|
|
|
|
("b.got_message", u"phase2", data2),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_early_bad(self):
|
|
|
|
r, b, s, events = self.build()
|
|
|
|
key = b"key"
|
|
|
|
r.got_key(key)
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
phase1_key = derive_phase_key(key, u"side", u"bad")
|
|
|
|
data1 = b"data1"
|
|
|
|
bad_body = encrypt_data(phase1_key, data1)
|
|
|
|
r.got_message(u"side", u"phase1", bad_body)
|
|
|
|
self.assertEqual(events, [("b.scared",),
|
|
|
|
])
|
|
|
|
|
|
|
|
phase2_key = derive_phase_key(key, u"side", u"phase2")
|
|
|
|
data2 = b"data2"
|
|
|
|
good_body = encrypt_data(phase2_key, data2)
|
|
|
|
r.got_message(u"side", u"phase2", good_body)
|
|
|
|
self.assertEqual(events, [("b.scared",),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_late_bad(self):
|
|
|
|
r, b, s, events = self.build()
|
|
|
|
key = b"key"
|
|
|
|
r.got_key(key)
|
|
|
|
self.assertEqual(events, [])
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
verifier = derive_key(key, b"wormhole:verifier")
|
2017-03-03 07:59:53 +00:00
|
|
|
phase1_key = derive_phase_key(key, u"side", u"phase1")
|
|
|
|
data1 = b"data1"
|
|
|
|
good_body = encrypt_data(phase1_key, data1)
|
|
|
|
r.got_message(u"side", u"phase1", good_body)
|
|
|
|
self.assertEqual(events, [("s.got_verified_key", key),
|
|
|
|
("b.happy",),
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
("b.got_verifier", verifier),
|
2017-03-03 07:59:53 +00:00
|
|
|
("b.got_message", u"phase1", data1),
|
|
|
|
])
|
|
|
|
|
|
|
|
phase2_key = derive_phase_key(key, u"side", u"bad")
|
|
|
|
data2 = b"data2"
|
|
|
|
bad_body = encrypt_data(phase2_key, data2)
|
|
|
|
r.got_message(u"side", u"phase2", bad_body)
|
|
|
|
self.assertEqual(events, [("s.got_verified_key", key),
|
|
|
|
("b.happy",),
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
("b.got_verifier", verifier),
|
2017-03-03 07:59:53 +00:00
|
|
|
("b.got_message", u"phase1", data1),
|
|
|
|
("b.scared",),
|
|
|
|
])
|
|
|
|
r.got_message(u"side", u"phase1", good_body)
|
|
|
|
r.got_message(u"side", u"phase2", bad_body)
|
|
|
|
self.assertEqual(events, [("s.got_verified_key", key),
|
|
|
|
("b.happy",),
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
("b.got_verifier", verifier),
|
2017-03-03 07:59:53 +00:00
|
|
|
("b.got_message", u"phase1", data1),
|
|
|
|
("b.scared",),
|
|
|
|
])
|
|
|
|
|
|
|
|
class Key(unittest.TestCase):
|
|
|
|
def test_derive_errors(self):
|
|
|
|
self.assertRaises(TypeError, derive_key, 123, b"purpose")
|
|
|
|
self.assertRaises(TypeError, derive_key, b"key", 123)
|
|
|
|
self.assertRaises(TypeError, derive_key, b"key", b"purpose", "not len")
|
|
|
|
|
|
|
|
def build(self):
|
|
|
|
events = []
|
2017-03-08 07:44:44 +00:00
|
|
|
k = _key.Key(u"appid", {}, u"side", timing.DebugTiming())
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
b = Dummy("b", events, IBoss, "scared", "got_key")
|
2017-03-03 07:59:53 +00:00
|
|
|
m = Dummy("m", events, IMailbox, "add_message")
|
|
|
|
r = Dummy("r", events, IReceive, "got_key")
|
|
|
|
k.wire(b, m, r)
|
|
|
|
return k, b, m, r, events
|
|
|
|
|
|
|
|
def test_good(self):
|
|
|
|
k, b, m, r, events = self.build()
|
|
|
|
code = u"1-foo"
|
|
|
|
k.got_code(code)
|
|
|
|
self.assertEqual(len(events), 1)
|
|
|
|
self.assertEqual(events[0][:2], ("m.add_message", "pake"))
|
2017-04-04 02:07:53 +00:00
|
|
|
msg1_json = events[0][2].decode("utf-8")
|
2017-03-03 07:59:53 +00:00
|
|
|
events[:] = []
|
|
|
|
msg1 = json.loads(msg1_json)
|
|
|
|
msg1_bytes = hexstr_to_bytes(msg1["pake_v1"])
|
|
|
|
sp = SPAKE2_Symmetric(to_bytes(code), idSymmetric=to_bytes(u"appid"))
|
|
|
|
msg2_bytes = sp.start()
|
|
|
|
key2 = sp.finish(msg1_bytes)
|
|
|
|
msg2 = dict_to_bytes({"pake_v1": bytes_to_hexstr(msg2_bytes)})
|
|
|
|
k.got_pake(msg2)
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
self.assertEqual(len(events), 3, events)
|
2017-03-04 09:55:42 +00:00
|
|
|
self.assertEqual(events[0], ("b.got_key", key2))
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
self.assertEqual(events[1][:2], ("m.add_message", "version"))
|
|
|
|
self.assertEqual(events[2], ("r.got_key", key2))
|
2017-03-03 07:59:53 +00:00
|
|
|
|
|
|
|
def test_bad(self):
|
|
|
|
k, b, m, r, events = self.build()
|
|
|
|
code = u"1-foo"
|
|
|
|
k.got_code(code)
|
|
|
|
self.assertEqual(len(events), 1)
|
|
|
|
self.assertEqual(events[0][:2], ("m.add_message", "pake"))
|
2017-04-04 02:07:53 +00:00
|
|
|
pake_1_json = events[0][2].decode("utf-8")
|
2017-03-03 07:59:53 +00:00
|
|
|
pake_1 = json.loads(pake_1_json)
|
2017-04-04 02:07:53 +00:00
|
|
|
self.assertEqual(list(pake_1.keys()), ["pake_v1"]) # value is PAKE stuff
|
2017-03-03 07:59:53 +00:00
|
|
|
events[:] = []
|
|
|
|
bad_pake_d = {"not_pake_v1": "stuff"}
|
|
|
|
k.got_pake(dict_to_bytes(bad_pake_d))
|
|
|
|
self.assertEqual(events, [("b.scared",)])
|
2017-03-04 11:40:19 +00:00
|
|
|
|
2017-04-06 17:44:04 +00:00
|
|
|
def test_reversed(self):
|
|
|
|
# A receiver using input_code() will choose the nameplate first, then
|
|
|
|
# the rest of the code. Once the nameplate is selected, we'll claim
|
|
|
|
# it and open the mailbox, which will cause the senders PAKE to
|
|
|
|
# arrive before the code has been set. Key() is supposed to stash the
|
|
|
|
# PAKE message until the code is set (allowing the PAKE computation
|
|
|
|
# to finish). This test exercises that PAKE-then-code sequence.
|
|
|
|
k, b, m, r, events = self.build()
|
|
|
|
code = u"1-foo"
|
|
|
|
|
|
|
|
sp = SPAKE2_Symmetric(to_bytes(code), idSymmetric=to_bytes(u"appid"))
|
|
|
|
msg2_bytes = sp.start()
|
|
|
|
msg2 = dict_to_bytes({"pake_v1": bytes_to_hexstr(msg2_bytes)})
|
|
|
|
k.got_pake(msg2)
|
|
|
|
self.assertEqual(len(events), 0)
|
|
|
|
|
|
|
|
k.got_code(code)
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
self.assertEqual(len(events), 4)
|
2017-04-06 17:44:04 +00:00
|
|
|
self.assertEqual(events[0][:2], ("m.add_message", "pake"))
|
|
|
|
msg1_json = events[0][2].decode("utf-8")
|
|
|
|
msg1 = json.loads(msg1_json)
|
|
|
|
msg1_bytes = hexstr_to_bytes(msg1["pake_v1"])
|
|
|
|
key2 = sp.finish(msg1_bytes)
|
|
|
|
self.assertEqual(events[1], ("b.got_key", key2))
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
self.assertEqual(events[2][:2], ("m.add_message", "version"))
|
|
|
|
self.assertEqual(events[3], ("r.got_key", key2))
|
2017-04-06 17:44:04 +00:00
|
|
|
|
2017-03-04 11:40:19 +00:00
|
|
|
class Code(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
c = _code.Code(timing.DebugTiming())
|
|
|
|
b = Dummy("b", events, IBoss, "got_code")
|
2017-03-19 16:35:05 +00:00
|
|
|
a = Dummy("a", events, IAllocator, "allocate")
|
|
|
|
n = Dummy("n", events, INameplate, "set_nameplate")
|
|
|
|
k = Dummy("k", events, IKey, "got_code")
|
|
|
|
i = Dummy("i", events, IInput, "start")
|
|
|
|
c.wire(b, a, n, k, i)
|
|
|
|
return c, b, a, n, k, i, events
|
|
|
|
|
|
|
|
def test_set_code(self):
|
|
|
|
c, b, a, n, k, i, events = self.build()
|
|
|
|
c.set_code(u"1-code")
|
|
|
|
self.assertEqual(events, [("n.set_nameplate", u"1"),
|
|
|
|
("b.got_code", u"1-code"),
|
2017-03-22 23:09:30 +00:00
|
|
|
("k.got_code", u"1-code"),
|
2017-03-19 16:35:05 +00:00
|
|
|
])
|
|
|
|
|
|
|
|
def test_allocate_code(self):
|
|
|
|
c, b, a, n, k, i, events = self.build()
|
|
|
|
wl = FakeWordList()
|
|
|
|
c.allocate_code(2, wl)
|
|
|
|
self.assertEqual(events, [("a.allocate", 2, wl)])
|
|
|
|
events[:] = []
|
|
|
|
c.allocated("1", "1-code")
|
|
|
|
self.assertEqual(events, [("n.set_nameplate", u"1"),
|
|
|
|
("b.got_code", u"1-code"),
|
2017-03-22 23:09:30 +00:00
|
|
|
("k.got_code", u"1-code"),
|
2017-03-19 16:35:05 +00:00
|
|
|
])
|
|
|
|
|
|
|
|
def test_input_code(self):
|
|
|
|
c, b, a, n, k, i, events = self.build()
|
|
|
|
c.input_code()
|
|
|
|
self.assertEqual(events, [("i.start",)])
|
|
|
|
events[:] = []
|
|
|
|
c.got_nameplate("1")
|
|
|
|
self.assertEqual(events, [("n.set_nameplate", u"1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
c.finished_input("1-code")
|
2017-03-22 23:09:30 +00:00
|
|
|
self.assertEqual(events, [("b.got_code", u"1-code"),
|
|
|
|
("k.got_code", u"1-code"),
|
2017-03-19 16:35:05 +00:00
|
|
|
])
|
|
|
|
|
|
|
|
class Input(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
i = _input.Input(timing.DebugTiming())
|
|
|
|
c = Dummy("c", events, ICode, "got_nameplate", "finished_input")
|
|
|
|
l = Dummy("l", events, ILister, "refresh")
|
|
|
|
i.wire(c, l)
|
|
|
|
return i, c, l, events
|
|
|
|
|
|
|
|
def test_ignore_completion(self):
|
|
|
|
i, c, l, events = self.build()
|
|
|
|
helper = i.start()
|
|
|
|
self.assertIsInstance(helper, _input.Helper)
|
|
|
|
self.assertEqual(events, [("l.refresh",)])
|
|
|
|
events[:] = []
|
|
|
|
with self.assertRaises(errors.MustChooseNameplateFirstError):
|
|
|
|
helper.choose_words("word-word")
|
|
|
|
helper.choose_nameplate("1")
|
|
|
|
self.assertEqual(events, [("c.got_nameplate", "1")])
|
|
|
|
events[:] = []
|
|
|
|
with self.assertRaises(errors.AlreadyChoseNameplateError):
|
|
|
|
helper.choose_nameplate("2")
|
|
|
|
helper.choose_words("word-word")
|
|
|
|
with self.assertRaises(errors.AlreadyChoseWordsError):
|
|
|
|
helper.choose_words("word-word")
|
|
|
|
self.assertEqual(events, [("c.finished_input", "1-word-word")])
|
|
|
|
|
|
|
|
def test_with_completion(self):
|
|
|
|
i, c, l, events = self.build()
|
|
|
|
helper = i.start()
|
|
|
|
self.assertIsInstance(helper, _input.Helper)
|
|
|
|
self.assertEqual(events, [("l.refresh",)])
|
|
|
|
events[:] = []
|
2017-04-06 01:26:28 +00:00
|
|
|
d = helper.when_wordlist_is_available()
|
|
|
|
self.assertNoResult(d)
|
2017-03-19 16:35:05 +00:00
|
|
|
helper.refresh_nameplates()
|
|
|
|
self.assertEqual(events, [("l.refresh",)])
|
|
|
|
events[:] = []
|
|
|
|
with self.assertRaises(errors.MustChooseNameplateFirstError):
|
|
|
|
helper.get_word_completions("prefix")
|
|
|
|
i.got_nameplates({"1", "12", "34", "35", "367"})
|
2017-04-06 01:26:28 +00:00
|
|
|
self.assertNoResult(d)
|
2017-03-19 16:35:05 +00:00
|
|
|
self.assertEqual(helper.get_nameplate_completions(""),
|
2017-04-06 01:26:28 +00:00
|
|
|
{"1-", "12-", "34-", "35-", "367-"})
|
2017-03-19 16:35:05 +00:00
|
|
|
self.assertEqual(helper.get_nameplate_completions("1"),
|
2017-04-06 01:26:28 +00:00
|
|
|
{"1-", "12-"})
|
2017-03-19 16:35:05 +00:00
|
|
|
self.assertEqual(helper.get_nameplate_completions("2"), set())
|
|
|
|
self.assertEqual(helper.get_nameplate_completions("3"),
|
2017-04-06 01:26:28 +00:00
|
|
|
{"34-", "35-", "367-"})
|
2017-03-19 16:35:05 +00:00
|
|
|
helper.choose_nameplate("34")
|
|
|
|
with self.assertRaises(errors.AlreadyChoseNameplateError):
|
|
|
|
helper.refresh_nameplates()
|
|
|
|
with self.assertRaises(errors.AlreadyChoseNameplateError):
|
|
|
|
helper.get_nameplate_completions("1")
|
|
|
|
self.assertEqual(events, [("c.got_nameplate", "34")])
|
|
|
|
events[:] = []
|
|
|
|
# no wordlist yet
|
2017-04-06 01:26:28 +00:00
|
|
|
self.assertNoResult(d)
|
2017-03-19 16:35:05 +00:00
|
|
|
self.assertEqual(helper.get_word_completions(""), set())
|
|
|
|
wl = FakeWordList()
|
|
|
|
i.got_wordlist(wl)
|
2017-04-06 01:26:28 +00:00
|
|
|
self.assertEqual(self.successResultOf(d), None)
|
|
|
|
# a new Deferred should fire right away
|
|
|
|
d = helper.when_wordlist_is_available()
|
|
|
|
self.assertEqual(self.successResultOf(d), None)
|
|
|
|
|
|
|
|
wl._completions = {"abc-", "abcd-", "ae-"}
|
2017-03-19 16:35:05 +00:00
|
|
|
self.assertEqual(helper.get_word_completions("a"), wl._completions)
|
|
|
|
self.assertEqual(wl._get_completions_prefix, "a")
|
|
|
|
with self.assertRaises(errors.AlreadyChoseNameplateError):
|
|
|
|
helper.refresh_nameplates()
|
|
|
|
with self.assertRaises(errors.AlreadyChoseNameplateError):
|
|
|
|
helper.get_nameplate_completions("1")
|
|
|
|
helper.choose_words("word-word")
|
|
|
|
with self.assertRaises(errors.AlreadyChoseWordsError):
|
|
|
|
helper.get_word_completions("prefix")
|
|
|
|
with self.assertRaises(errors.AlreadyChoseWordsError):
|
|
|
|
helper.choose_words("word-word")
|
|
|
|
self.assertEqual(events, [("c.finished_input", "34-word-word")])
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
class Lister(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
l = _lister.Lister(timing.DebugTiming())
|
|
|
|
rc = Dummy("rc", events, IRendezvousConnector, "tx_list")
|
|
|
|
i = Dummy("i", events, IInput, "got_nameplates")
|
|
|
|
l.wire(rc, i)
|
|
|
|
return l, rc, i, events
|
|
|
|
|
|
|
|
def test_connect_first(self):
|
|
|
|
l, rc, i, events = self.build()
|
|
|
|
l.connected()
|
|
|
|
l.lost()
|
|
|
|
l.connected()
|
2017-03-04 11:40:19 +00:00
|
|
|
self.assertEqual(events, [])
|
2017-03-19 16:35:05 +00:00
|
|
|
l.refresh()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
])
|
2017-03-04 11:40:19 +00:00
|
|
|
events[:] = []
|
2017-03-19 16:35:05 +00:00
|
|
|
l.rx_nameplates({"1", "2", "3"})
|
|
|
|
self.assertEqual(events, [("i.got_nameplates", {"1", "2", "3"}),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
# now we're satisfied: disconnecting and reconnecting won't ask again
|
|
|
|
l.lost()
|
|
|
|
l.connected()
|
2017-03-04 11:40:19 +00:00
|
|
|
self.assertEqual(events, [])
|
2017-03-19 16:35:05 +00:00
|
|
|
|
|
|
|
# but if we're told to refresh, we'll do so
|
|
|
|
l.refresh()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_connect_first_ask_twice(self):
|
|
|
|
l, rc, i, events = self.build()
|
|
|
|
l.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
l.refresh()
|
|
|
|
l.refresh()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
("rc.tx_list",),
|
|
|
|
])
|
|
|
|
l.rx_nameplates({"1", "2", "3"})
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
("rc.tx_list",),
|
|
|
|
("i.got_nameplates", {"1", "2", "3"}),
|
|
|
|
])
|
|
|
|
l.rx_nameplates({"1" ,"2", "3", "4"})
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
("rc.tx_list",),
|
|
|
|
("i.got_nameplates", {"1", "2", "3"}),
|
|
|
|
("i.got_nameplates", {"1", "2", "3", "4"}),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_reconnect(self):
|
|
|
|
l, rc, i, events = self.build()
|
|
|
|
l.refresh()
|
|
|
|
l.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
])
|
2017-03-04 11:40:19 +00:00
|
|
|
events[:] = []
|
2017-03-19 16:35:05 +00:00
|
|
|
l.lost()
|
|
|
|
l.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_refresh_first(self):
|
|
|
|
l, rc, i, events = self.build()
|
|
|
|
l.refresh()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
l.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
])
|
|
|
|
l.rx_nameplates({"1", "2", "3"})
|
|
|
|
self.assertEqual(events, [("rc.tx_list",),
|
|
|
|
("i.got_nameplates", {"1", "2", "3"}),
|
|
|
|
])
|
|
|
|
|
|
|
|
def test_unrefreshed(self):
|
|
|
|
l, rc, i, events = self.build()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
# we receive a spontaneous rx_nameplates, without asking
|
|
|
|
l.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
l.rx_nameplates({"1", "2", "3"})
|
|
|
|
self.assertEqual(events, [("i.got_nameplates", {"1", "2", "3"}),
|
|
|
|
])
|
2017-03-04 11:40:19 +00:00
|
|
|
|
2017-03-19 16:35:05 +00:00
|
|
|
class Allocator(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
a = _allocator.Allocator(timing.DebugTiming())
|
|
|
|
rc = Dummy("rc", events, IRendezvousConnector, "tx_allocate")
|
|
|
|
c = Dummy("c", events, ICode, "allocated")
|
|
|
|
a.wire(rc, c)
|
|
|
|
return a, rc, c, events
|
|
|
|
|
|
|
|
def test_no_allocation(self):
|
|
|
|
a, rc, c, events = self.build()
|
|
|
|
a.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
def test_allocate_first(self):
|
|
|
|
a, rc, c, events = self.build()
|
|
|
|
a.allocate(2, FakeWordList())
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
a.connected()
|
2017-03-04 11:40:19 +00:00
|
|
|
self.assertEqual(events, [("rc.tx_allocate",)])
|
|
|
|
events[:] = []
|
2017-03-19 16:35:05 +00:00
|
|
|
a.lost()
|
|
|
|
a.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_allocate",),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
a.rx_allocated("1")
|
|
|
|
self.assertEqual(events, [("c.allocated", "1", "1-word-word"),
|
|
|
|
])
|
2017-03-04 11:40:19 +00:00
|
|
|
|
2017-03-19 16:35:05 +00:00
|
|
|
def test_connect_first(self):
|
|
|
|
a, rc, c, events = self.build()
|
|
|
|
a.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
a.allocate(2, FakeWordList())
|
|
|
|
self.assertEqual(events, [("rc.tx_allocate",)])
|
|
|
|
events[:] = []
|
|
|
|
a.lost()
|
|
|
|
a.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_allocate",),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
a.rx_allocated("1")
|
|
|
|
self.assertEqual(events, [("c.allocated", "1", "1-word-word"),
|
|
|
|
])
|
2017-03-04 11:40:19 +00:00
|
|
|
|
2017-03-19 19:03:00 +00:00
|
|
|
class Nameplate(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
n = _nameplate.Nameplate()
|
|
|
|
m = Dummy("m", events, IMailbox, "got_mailbox")
|
|
|
|
i = Dummy("i", events, IInput, "got_wordlist")
|
|
|
|
rc = Dummy("rc", events, IRendezvousConnector, "tx_claim", "tx_release")
|
|
|
|
t = Dummy("t", events, ITerminator, "nameplate_done")
|
|
|
|
n.wire(m, i, rc, t)
|
|
|
|
return n, m, i, rc, t, events
|
|
|
|
|
|
|
|
def test_set_first(self):
|
|
|
|
# connection remains up throughout
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_connect_first(self):
|
|
|
|
# connection remains up throughout
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_reconnect_while_claiming(self):
|
|
|
|
# connection bounced while waiting for rx_claimed
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
|
|
|
|
def test_reconnect_while_claimed(self):
|
|
|
|
# connection bounced while claimed: no retransmits should be sent
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
def test_reconnect_while_releasing(self):
|
|
|
|
# connection bounced while waiting for rx_released
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
|
|
|
|
def test_reconnect_while_done(self):
|
|
|
|
# connection bounces after we're done
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
def test_close_while_idle(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.close()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_idle_connected(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.close()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_unclaimed(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
n.close() # before ever being connected
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_claiming(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.close()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_claiming_but_disconnected(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.close()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
# we're now waiting for a connection, so we can release the nameplate
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_claimed(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.close()
|
|
|
|
# this path behaves just like a deliberate release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_claimed_but_disconnected(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.close()
|
|
|
|
# we're now waiting for a connection, so we can release the nameplate
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_releasing(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.close() # ignored, we're already on our way out the door
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_releasing_but_disconnecteda(self):
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.close()
|
|
|
|
# we must retransmit the tx_release when we reconnect
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
|
|
|
|
def test_close_while_done(self):
|
|
|
|
# connection remains up throughout
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.close() # NOP
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
def test_close_while_done_but_disconnected(self):
|
|
|
|
# connection remains up throughout
|
|
|
|
n, m, i, rc, t, events = self.build()
|
|
|
|
n.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
n.set_nameplate("1")
|
|
|
|
self.assertEqual(events, [("rc.tx_claim", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._nameplate.PGPWordList", return_value=wl):
|
|
|
|
n.rx_claimed("mbox1")
|
|
|
|
self.assertEqual(events, [("i.got_wordlist", wl),
|
|
|
|
("m.got_mailbox", "mbox1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.release()
|
|
|
|
self.assertEqual(events, [("rc.tx_release", "1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.rx_released()
|
|
|
|
self.assertEqual(events, [("t.nameplate_done",)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
n.lost()
|
|
|
|
n.close() # NOP
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
class Mailbox(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
m = _mailbox.Mailbox("side1")
|
|
|
|
n = Dummy("n", events, INameplate, "release")
|
|
|
|
rc = Dummy("rc", events, IRendezvousConnector,
|
|
|
|
"tx_add", "tx_open", "tx_close")
|
|
|
|
o = Dummy("o", events, IOrder, "got_message")
|
|
|
|
t = Dummy("t", events, ITerminator, "mailbox_done")
|
|
|
|
m.wire(n, rc, o, t)
|
|
|
|
return m, n, rc, o, t, events
|
|
|
|
|
|
|
|
# TODO: test moods
|
|
|
|
|
|
|
|
def assert_events(self, events, initial_events, tx_add_events):
|
|
|
|
self.assertEqual(len(events), len(initial_events)+len(tx_add_events),
|
|
|
|
events)
|
|
|
|
self.assertEqual(events[:len(initial_events)], initial_events)
|
|
|
|
self.assertEqual(set(events[len(initial_events):]), tx_add_events)
|
|
|
|
|
|
|
|
def test_connect_first(self): # connect before got_mailbox
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.add_message("phase1", b"msg1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.got_mailbox("mbox1")
|
|
|
|
self.assertEqual(events, [("rc.tx_open", "mbox1"),
|
|
|
|
("rc.tx_add", "phase1", b"msg1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.add_message("phase2", b"msg2")
|
|
|
|
self.assertEqual(events, [("rc.tx_add", "phase2", b"msg2")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
# bouncing the connection should retransmit everything, even the open()
|
|
|
|
m.lost()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
# and messages sent while here should be queued
|
|
|
|
m.add_message("phase3", b"msg3")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.connected()
|
|
|
|
# the other messages are allowed to be sent in any order
|
|
|
|
self.assert_events(events, [("rc.tx_open", "mbox1")],
|
|
|
|
{ ("rc.tx_add", "phase1", b"msg1"),
|
|
|
|
("rc.tx_add", "phase2", b"msg2"),
|
|
|
|
("rc.tx_add", "phase3", b"msg3"),
|
|
|
|
})
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.rx_message("side1", "phase1", b"msg1") # echo of our message, dequeue
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.lost()
|
|
|
|
m.connected()
|
|
|
|
self.assert_events(events, [("rc.tx_open", "mbox1")],
|
|
|
|
{("rc.tx_add", "phase2", b"msg2"),
|
|
|
|
("rc.tx_add", "phase3", b"msg3"),
|
|
|
|
})
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
# a new message from the peer gets delivered, and the Nameplate is
|
|
|
|
# released since the message proves that our peer opened the Mailbox
|
|
|
|
# and therefore no longer needs the Nameplate
|
|
|
|
m.rx_message("side2", "phase1", b"msg1them") # new message from peer
|
|
|
|
self.assertEqual(events, [("n.release",),
|
|
|
|
("o.got_message", "side2", "phase1", b"msg1them"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
# we de-duplicate peer messages, but still re-release the nameplate
|
|
|
|
# since Nameplate is smart enough to ignore that
|
|
|
|
m.rx_message("side2", "phase1", b"msg1them")
|
|
|
|
self.assertEqual(events, [("n.release",),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [("rc.tx_close", "mbox1", "happy")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
# while closing, we ignore a lot
|
|
|
|
m.add_message("phase-late", b"late")
|
|
|
|
m.rx_message("side1", "phase2", b"msg2")
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
# bouncing the connection forces a retransmit of the tx_close
|
|
|
|
m.lost()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
m.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_close", "mbox1", "happy")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.rx_closed()
|
|
|
|
self.assertEqual(events, [("t.mailbox_done",)])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
# while closed, we ignore everything
|
|
|
|
m.add_message("phase-late", b"late")
|
|
|
|
m.rx_message("side1", "phase2", b"msg2")
|
|
|
|
m.close("happy")
|
|
|
|
m.lost()
|
|
|
|
m.connected()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
def test_mailbox_first(self): # got_mailbox before connect
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.add_message("phase1", b"msg1")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.got_mailbox("mbox1")
|
|
|
|
m.add_message("phase2", b"msg2")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
m.connected()
|
|
|
|
|
|
|
|
self.assert_events(events, [("rc.tx_open", "mbox1")],
|
|
|
|
{ ("rc.tx_add", "phase1", b"msg1"),
|
|
|
|
("rc.tx_add", "phase2", b"msg2"),
|
|
|
|
})
|
|
|
|
|
|
|
|
def test_close_while_idle(self):
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [("t.mailbox_done",)])
|
|
|
|
|
|
|
|
def test_close_while_idle_but_connected(self):
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.connected()
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [("t.mailbox_done",)])
|
|
|
|
|
|
|
|
def test_close_while_mailbox_disconnected(self):
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.got_mailbox("mbox1")
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [("t.mailbox_done",)])
|
|
|
|
|
|
|
|
def test_close_while_reconnecting(self):
|
|
|
|
m, n, rc, o, t, events = self.build()
|
|
|
|
m.got_mailbox("mbox1")
|
|
|
|
m.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_open", "mbox1")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.lost()
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
m.close("happy")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
# we now wait to connect, so we can send the tx_close
|
|
|
|
|
|
|
|
m.connected()
|
|
|
|
self.assertEqual(events, [("rc.tx_close", "mbox1", "happy")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
m.rx_closed()
|
|
|
|
self.assertEqual(events, [("t.mailbox_done",)])
|
|
|
|
events[:] = []
|
2017-03-19 17:38:35 +00:00
|
|
|
|
|
|
|
class Terminator(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
t = _terminator.Terminator()
|
|
|
|
b = Dummy("b", events, IBoss, "closed")
|
|
|
|
rc = Dummy("rc", events, IRendezvousConnector, "stop")
|
|
|
|
n = Dummy("n", events, INameplate, "close")
|
|
|
|
m = Dummy("m", events, IMailbox, "close")
|
|
|
|
t.wire(b, rc, n, m)
|
|
|
|
return t, b, rc, n, m, events
|
|
|
|
|
|
|
|
# there are three events, and we need to test all orderings of them
|
|
|
|
def _do_test(self, ev1, ev2, ev3):
|
|
|
|
t, b, rc, n, m, events = self.build()
|
|
|
|
input_events = {"mailbox": lambda: t.mailbox_done(),
|
|
|
|
"nameplate": lambda: t.nameplate_done(),
|
|
|
|
"close": lambda: t.close("happy"),
|
|
|
|
}
|
|
|
|
close_events = [("n.close",),
|
|
|
|
("m.close", "happy"),
|
|
|
|
]
|
|
|
|
|
|
|
|
input_events[ev1]()
|
|
|
|
expected = []
|
|
|
|
if ev1 == "close":
|
|
|
|
expected.extend(close_events)
|
|
|
|
self.assertEqual(events, expected)
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
input_events[ev2]()
|
|
|
|
expected = []
|
|
|
|
if ev2 == "close":
|
|
|
|
expected.extend(close_events)
|
|
|
|
self.assertEqual(events, expected)
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
input_events[ev3]()
|
|
|
|
expected = []
|
|
|
|
if ev3 == "close":
|
|
|
|
expected.extend(close_events)
|
|
|
|
expected.append(("rc.stop",))
|
|
|
|
self.assertEqual(events, expected)
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
t.stopped()
|
|
|
|
self.assertEqual(events, [("b.closed",)])
|
|
|
|
|
|
|
|
def test_terminate(self):
|
|
|
|
self._do_test("mailbox", "nameplate", "close")
|
|
|
|
self._do_test("mailbox", "close", "nameplate")
|
|
|
|
self._do_test("nameplate", "mailbox", "close")
|
|
|
|
self._do_test("nameplate", "close", "mailbox")
|
|
|
|
self._do_test("close", "nameplate", "mailbox")
|
|
|
|
self._do_test("close", "mailbox", "nameplate")
|
|
|
|
|
2017-03-19 19:03:00 +00:00
|
|
|
# TODO: test moods
|
2017-03-19 17:38:35 +00:00
|
|
|
|
2017-03-19 20:03:48 +00:00
|
|
|
class MockBoss(_boss.Boss):
|
|
|
|
def __attrs_post_init__(self):
|
|
|
|
#self._build_workers()
|
|
|
|
self._init_other_state()
|
|
|
|
|
|
|
|
class Boss(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
wormhole = Dummy("w", events, None,
|
2017-05-12 20:12:36 +00:00
|
|
|
"got_welcome",
|
|
|
|
"got_code", "got_key", "got_verifier", "got_versions",
|
2017-03-19 20:03:48 +00:00
|
|
|
"received", "closed")
|
|
|
|
versions = {"app": "version1"}
|
|
|
|
reactor = None
|
|
|
|
journal = ImmediateJournal()
|
|
|
|
tor_manager = None
|
|
|
|
b = MockBoss(wormhole, "side", "url", "appid", versions,
|
2017-05-12 20:12:36 +00:00
|
|
|
reactor, journal, tor_manager,
|
2017-03-19 20:03:48 +00:00
|
|
|
timing.DebugTiming())
|
2017-03-19 22:24:10 +00:00
|
|
|
b._T = Dummy("t", events, ITerminator, "close")
|
|
|
|
b._S = Dummy("s", events, ISend, "send")
|
|
|
|
b._RC = Dummy("rc", events, IRendezvousConnector, "start")
|
|
|
|
b._C = Dummy("c", events, ICode,
|
|
|
|
"allocate_code", "input_code", "set_code")
|
2017-03-19 20:03:48 +00:00
|
|
|
return b, events
|
|
|
|
|
|
|
|
def test_basic(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.got_code("1-code")
|
|
|
|
self.assertEqual(events, [("w.got_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
2017-05-12 20:12:36 +00:00
|
|
|
welcome = {"howdy": "how are ya"}
|
|
|
|
b.rx_welcome(welcome)
|
|
|
|
self.assertEqual(events, [("w.got_welcome", welcome),
|
|
|
|
])
|
|
|
|
events[:] = []
|
2017-03-19 22:09:26 +00:00
|
|
|
|
2017-03-19 20:03:48 +00:00
|
|
|
# pretend a peer message was correctly decrypted
|
2017-03-19 22:09:26 +00:00
|
|
|
b.got_key(b"key")
|
2017-03-19 20:03:48 +00:00
|
|
|
b.happy()
|
add w.when_key(), fix w.when_verified() to fire later
Previously, w.when_verified() was documented to fire only after a valid
encrypted message was received, but in fact it fired as soon as the shared
key was derived (before any encrypted messages are seen, so no actual
"verification" could occur yet).
This fixes that, and also adds a new w.when_key() API call which fires at the
earlier point. Having something which fires early is useful for the CLI
commands that want to print a pacifier message when the peer is responding
slowly. In particular it helps detect the case where 'wormhole send' has quit
early (after depositing the PAKE message on the server, but before the
receiver has started). In this case, the receiver will compute the shared
key, but then wait forever hoping for a VERSION that will never come. By
starting a timer when w.when_key() fires, and cancelling it when
w.when_verified() fires, we have a good place to tell the user that something
is taking longer than it should have.
This shifts responsibility for notifying Boss.got_verifier, out of Key and
into Receive, since Receive is what notices the first valid encrypted
message. It also shifts the Boss's ordering expectations: it now receives
B.happy() before B.got_verifier(), and consequently got_verifier ought to
arrive in the S2_happy state rather than S1_lonely.
2017-04-07 01:27:41 +00:00
|
|
|
b.got_verifier(b"verifier")
|
2017-03-19 22:09:26 +00:00
|
|
|
b.got_message("version", b"{}")
|
|
|
|
b.got_message("0", b"msg1")
|
|
|
|
self.assertEqual(events, [("w.got_key", b"key"),
|
|
|
|
("w.got_verifier", b"verifier"),
|
2017-05-12 20:12:36 +00:00
|
|
|
("w.got_versions", {}),
|
2017-03-19 20:03:48 +00:00
|
|
|
("w.received", b"msg1"),
|
|
|
|
])
|
|
|
|
events[:] = []
|
2017-03-19 22:09:26 +00:00
|
|
|
|
|
|
|
b.send(b"msg2")
|
|
|
|
self.assertEqual(events, [("s.send", "0", b"msg2")])
|
|
|
|
events[:] = []
|
|
|
|
|
2017-03-19 20:03:48 +00:00
|
|
|
b.close()
|
|
|
|
self.assertEqual(events, [("t.close", "happy")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
2017-03-19 22:09:26 +00:00
|
|
|
self.assertEqual(events, [("w.closed", "happy")])
|
|
|
|
|
2017-05-12 20:12:36 +00:00
|
|
|
def test_unwelcome(self):
|
|
|
|
b, events = self.build()
|
|
|
|
unwelcome = {"error": "go away"}
|
|
|
|
b.rx_welcome(unwelcome)
|
|
|
|
self.assertEqual(events, [("t.close", "unwelcome")])
|
|
|
|
|
2017-03-19 22:09:26 +00:00
|
|
|
def test_lonely(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.got_code("1-code")
|
|
|
|
self.assertEqual(events, [("w.got_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.close()
|
|
|
|
self.assertEqual(events, [("t.close", "lonely")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], errors.LonelyError)
|
|
|
|
|
|
|
|
def test_server_error(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
orig = {}
|
|
|
|
b.rx_error("server-error-msg", orig)
|
|
|
|
self.assertEqual(events, [("t.close", "errory")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], errors.ServerError)
|
|
|
|
self.assertEqual(events[0][1].args[0], "server-error-msg")
|
|
|
|
|
|
|
|
def test_internal_error(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.error(ValueError("catch me"))
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], ValueError)
|
|
|
|
self.assertEqual(events[0][1].args[0], "catch me")
|
|
|
|
|
|
|
|
def test_close_early(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.close() # before even w.got_code
|
|
|
|
self.assertEqual(events, [("t.close", "lonely")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], errors.LonelyError)
|
|
|
|
|
|
|
|
def test_error_while_closing(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.close()
|
|
|
|
self.assertEqual(events, [("t.close", "lonely")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.error(ValueError("oops"))
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], ValueError)
|
|
|
|
|
|
|
|
def test_scary_version(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.got_code("1-code")
|
|
|
|
self.assertEqual(events, [("w.got_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.scared()
|
|
|
|
self.assertEqual(events, [("t.close", "scary")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], errors.WrongPasswordError)
|
|
|
|
|
|
|
|
def test_scary_phase(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.got_code("1-code")
|
|
|
|
self.assertEqual(events, [("w.got_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.happy() # phase=version
|
|
|
|
|
|
|
|
b.scared() # phase=0
|
|
|
|
self.assertEqual(events, [("t.close", "scary")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.closed()
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "w.closed")
|
|
|
|
self.assertIsInstance(events[0][1], errors.WrongPasswordError)
|
|
|
|
|
|
|
|
def test_unknown_phase(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
self.assertEqual(events, [("c.set_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.got_code("1-code")
|
|
|
|
self.assertEqual(events, [("w.got_code", "1-code")])
|
|
|
|
events[:] = []
|
|
|
|
|
|
|
|
b.happy() # phase=version
|
|
|
|
|
|
|
|
b.got_message("unknown-phase", b"spooky")
|
|
|
|
self.assertEqual(events, [])
|
|
|
|
|
|
|
|
self.flushLoggedErrors(errors._UnknownPhaseError)
|
|
|
|
|
|
|
|
def test_set_code_bad_format(self):
|
|
|
|
b, events = self.build()
|
|
|
|
with self.assertRaises(errors.KeyFormatError):
|
|
|
|
b.set_code("1 code")
|
|
|
|
|
|
|
|
def test_set_code_bad_twice(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b.set_code("1-code")
|
|
|
|
with self.assertRaises(errors.OnlyOneCodeError):
|
|
|
|
b.set_code("1-code")
|
|
|
|
|
|
|
|
def test_input_code(self):
|
|
|
|
b, events = self.build()
|
|
|
|
b._C.retval = "helper"
|
|
|
|
helper = b.input_code()
|
|
|
|
self.assertEqual(events, [("c.input_code",)])
|
|
|
|
self.assertEqual(helper, "helper")
|
|
|
|
with self.assertRaises(errors.OnlyOneCodeError):
|
|
|
|
b.input_code()
|
|
|
|
|
|
|
|
def test_allocate_code(self):
|
|
|
|
b, events = self.build()
|
|
|
|
wl = object()
|
|
|
|
with mock.patch("wormhole._boss.PGPWordList", return_value=wl):
|
|
|
|
b.allocate_code(3)
|
|
|
|
self.assertEqual(events, [("c.allocate_code", 3, wl)])
|
|
|
|
with self.assertRaises(errors.OnlyOneCodeError):
|
|
|
|
b.allocate_code(3)
|
|
|
|
|
|
|
|
|
2017-06-26 17:49:13 +00:00
|
|
|
class Rendezvous(unittest.TestCase):
|
|
|
|
def build(self):
|
|
|
|
events = []
|
|
|
|
reactor = object()
|
|
|
|
journal = ImmediateJournal()
|
|
|
|
tor_manager = None
|
|
|
|
rc = _rendezvous.RendezvousConnector("ws://host:4000/v1", "appid",
|
|
|
|
"side", reactor,
|
|
|
|
journal, tor_manager,
|
|
|
|
timing.DebugTiming())
|
|
|
|
b = Dummy("b", events, IBoss, "error")
|
|
|
|
n = Dummy("n", events, INameplate, "connected", "lost")
|
|
|
|
m = Dummy("m", events, IMailbox, "connected", "lost")
|
|
|
|
a = Dummy("a", events, IAllocator, "connected", "lost")
|
|
|
|
l = Dummy("l", events, ILister, "connected", "lost")
|
|
|
|
t = Dummy("t", events, ITerminator)
|
|
|
|
rc.wire(b, n, m, a, l, t)
|
|
|
|
return rc, events
|
|
|
|
|
|
|
|
def test_basic(self):
|
|
|
|
rc, events = self.build()
|
|
|
|
del rc, events
|
|
|
|
|
|
|
|
def test_websocket_failure(self):
|
|
|
|
# if the TCP connection succeeds, but the subsequent WebSocket
|
|
|
|
# negotiation fails, then we'll see an onClose without first seeing
|
|
|
|
# onOpen
|
|
|
|
rc, events = self.build()
|
|
|
|
rc.ws_close(False, 1006, "connection was closed uncleanly")
|
|
|
|
# this should cause the ClientService to be shut down, and an error
|
|
|
|
# delivered to the Boss
|
|
|
|
self.assertEqual(len(events), 1, events)
|
|
|
|
self.assertEqual(events[0][0], "b.error")
|
|
|
|
self.assertIsInstance(events[0][1], errors.ServerConnectionError)
|
|
|
|
self.assertEqual(str(events[0][1]), "connection was closed uncleanly")
|
|
|
|
|
|
|
|
def test_websocket_lost(self):
|
|
|
|
# if the TCP connection succeeds, and negotiation completes, then the
|
|
|
|
# connection is lost, several machines should be notified
|
|
|
|
rc, events = self.build()
|
|
|
|
|
|
|
|
ws = mock.Mock()
|
|
|
|
def notrandom(length):
|
|
|
|
return b"\x00" * length
|
|
|
|
with mock.patch("os.urandom", notrandom):
|
|
|
|
rc.ws_open(ws)
|
|
|
|
self.assertEqual(events, [("n.connected", ),
|
|
|
|
("m.connected", ),
|
|
|
|
("l.connected", ),
|
|
|
|
("a.connected", ),
|
|
|
|
])
|
|
|
|
events[:] = []
|
|
|
|
def sent_messages(ws):
|
|
|
|
for c in ws.mock_calls:
|
|
|
|
self.assertEqual(c[0], "sendMessage", ws.mock_calls)
|
|
|
|
self.assertEqual(c[1][1], False, ws.mock_calls)
|
|
|
|
yield bytes_to_dict(c[1][0])
|
|
|
|
self.assertEqual(list(sent_messages(ws)),
|
|
|
|
[dict(appid="appid", side="side", id="0000",
|
|
|
|
type="bind"),
|
|
|
|
])
|
|
|
|
|
|
|
|
rc.ws_close(True, None, None)
|
|
|
|
self.assertEqual(events, [("n.lost", ),
|
|
|
|
("m.lost", ),
|
|
|
|
("l.lost", ),
|
|
|
|
("a.lost", ),
|
|
|
|
])
|
|
|
|
|
2017-03-19 22:09:26 +00:00
|
|
|
|
2017-03-19 20:03:48 +00:00
|
|
|
|
2017-03-19 16:35:05 +00:00
|
|
|
# TODO
|
2017-03-19 17:38:35 +00:00
|
|
|
# #Send
|
2017-03-19 19:03:00 +00:00
|
|
|
# #Mailbox
|
|
|
|
# #Nameplate
|
2017-03-19 17:38:35 +00:00
|
|
|
# #Terminator
|
2017-03-19 16:35:05 +00:00
|
|
|
# Boss
|
|
|
|
# RendezvousConnector (not a state machine)
|
|
|
|
# #Input: exercise helper methods
|
2017-03-19 17:38:35 +00:00
|
|
|
# #wordlist
|
2017-03-19 19:03:00 +00:00
|
|
|
# test idempotency / at-most-once where applicable
|