sdk/mystuff
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
940e26830b
mystuff/net/gurk-rs/files/vendor/libsignal-protocol/tests/groups.rs
c0dev0id 940e26830b Add: gurk-rs (WIP)
2022-10-31 22:01:15 +01:00

875 lines
24 KiB
Rust
Raw Blame History

//
// Copyright 2020 Signal Messenger, LLC.
// SPDX-License-Identifier: AGPL-3.0-only
//
mod support;
use async_trait::async_trait;
use futures_util::FutureExt;
use libsignal_protocol::*;
use rand::rngs::OsRng;
use rand::seq::SliceRandom;
use rand::Rng;
use std::convert::TryFrom;
use support::*;
use uuid::Uuid;
#[test]
fn group_no_send_session() -> Result<(), SignalProtocolError> {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
assert!(group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"space camp?".as_bytes(),
&mut csprng,
None,
)
.now_or_never()
.expect("sync")
.is_err());
Ok(())
}
pub struct ContextUsingSenderKeyStore {
store: InMemSenderKeyStore,
expected_context: Context,
}
impl ContextUsingSenderKeyStore {
pub fn new(expected_context: Context) -> Self {
Self {
store: InMemSenderKeyStore::new(),
expected_context,
}
}
}
#[async_trait(?Send)]
impl SenderKeyStore for ContextUsingSenderKeyStore {
async fn store_sender_key(
&mut self,
sender: &ProtocolAddress,
distribution_id: Uuid,
record: &SenderKeyRecord,
ctx: Context,
) -> Result<(), SignalProtocolError> {
assert_eq!(ctx, self.expected_context);
self.store
.store_sender_key(sender, distribution_id, record, ctx)
.await
}
async fn load_sender_key(
&mut self,
sender: &ProtocolAddress,
distribution_id: Uuid,
ctx: Context,
) -> Result<Option<SenderKeyRecord>, SignalProtocolError> {
assert_eq!(ctx, self.expected_context);
self.store
.load_sender_key(sender, distribution_id, ctx)
.await
}
}
#[test]
fn group_using_context_arg() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let x = Box::new(1);
let context = Some(Box::into_raw(x) as _);
let mut alice_store = ContextUsingSenderKeyStore::new(context);
let _sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
context,
)
.await?;
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_no_recv_session() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let _recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
let alice_ciphertext = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"space camp?".as_bytes(),
&mut csprng,
None,
)
.await?;
let bob_plaintext = group_decrypt(
alice_ciphertext.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await;
assert!(bob_plaintext.is_err());
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_basic_encrypt_decrypt() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
let alice_ciphertext = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"space camp?".as_bytes(),
&mut csprng,
None,
)
.await?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let bob_plaintext = group_decrypt(
alice_ciphertext.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext).expect("valid utf8"),
"space camp?"
);
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_sealed_sender() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let alice_device_id = 23;
let bob_device_id = 42;
let alice_e164 = "+14151111111".to_owned();
let alice_uuid = "9d0652a3-dcc3-4d11-975f-74d61598733f".to_string();
let bob_uuid = "796abedb-ca4e-4f18-8803-1fde5b921f9f".to_string();
let carol_uuid = "38381c3b-2606-4ca7-9310-7cb927f2ab4a".to_string();
let alice_uuid_address = ProtocolAddress::new(alice_uuid.clone(), alice_device_id);
let bob_uuid_address = ProtocolAddress::new(bob_uuid.clone(), bob_device_id);
let carol_uuid_address = ProtocolAddress::new(carol_uuid.clone(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = support::test_in_memory_protocol_store()?;
let mut bob_store = support::test_in_memory_protocol_store()?;
let mut carol_store = support::test_in_memory_protocol_store()?;
let alice_pubkey = *alice_store.get_identity_key_pair(None).await?.public_key();
let bob_pre_key_bundle = create_pre_key_bundle(&mut bob_store, &mut csprng).await?;
let carol_pre_key_bundle = create_pre_key_bundle(&mut carol_store, &mut csprng).await?;
process_prekey_bundle(
&bob_uuid_address,
&mut alice_store.session_store,
&mut alice_store.identity_store,
&bob_pre_key_bundle,
&mut csprng,
None,
)
.await?;
process_prekey_bundle(
&carol_uuid_address,
&mut alice_store.session_store,
&mut alice_store.identity_store,
&carol_pre_key_bundle,
&mut csprng,
None,
)
.await?;
let sent_distribution_message = create_sender_key_distribution_message(
&alice_uuid_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
process_sender_key_distribution_message(
&alice_uuid_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
process_sender_key_distribution_message(
&alice_uuid_address,
&recv_distribution_message,
&mut carol_store,
None,
)
.await?;
let trust_root = KeyPair::generate(&mut csprng);
let server_key = KeyPair::generate(&mut csprng);
let server_cert = ServerCertificate::new(
1,
server_key.public_key,
&trust_root.private_key,
&mut csprng,
)?;
let expires = 1605722925;
let sender_cert = SenderCertificate::new(
alice_uuid.clone(),
Some(alice_e164.clone()),
alice_pubkey,
alice_device_id,
expires,
server_cert,
&server_key.private_key,
&mut csprng,
)?;
let alice_message = group_encrypt(
&mut alice_store,
&alice_uuid_address,
distribution_id,
"space camp?".as_bytes(),
&mut csprng,
None,
)
.await?;
let alice_usmc = UnidentifiedSenderMessageContent::new(
CiphertextMessageType::SenderKey,
sender_cert.clone(),
alice_message.serialized().to_vec(),
ContentHint::Implicit,
Some([42].to_vec()),
)?;
let recipients = [&bob_uuid_address, &carol_uuid_address];
let alice_ctext = sealed_sender_multi_recipient_encrypt(
&recipients,
&alice_store
.session_store
.load_existing_sessions(&recipients)?,
&alice_usmc,
&mut alice_store.identity_store,
None,
&mut csprng,
)
.await?;
let [bob_ctext, carol_ctext] =
<[_; 2]>::try_from(sealed_sender_multi_recipient_fan_out(&alice_ctext)?).unwrap();
let bob_usmc =
sealed_sender_decrypt_to_usmc(&bob_ctext, &mut bob_store.identity_store, None).await?;
assert_eq!(bob_usmc.sender()?.sender_uuid()?, alice_uuid);
assert_eq!(bob_usmc.sender()?.sender_e164()?, Some(alice_e164.as_ref()));
assert_eq!(bob_usmc.sender()?.sender_device_id()?, alice_device_id);
assert_eq!(bob_usmc.content_hint()?, ContentHint::Implicit);
assert_eq!(bob_usmc.group_id()?, Some(&[42][..]));
let bob_plaintext = group_decrypt(
bob_usmc.contents()?,
&mut bob_store,
&alice_uuid_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext).expect("valid utf8"),
"space camp?"
);
let carol_usmc =
sealed_sender_decrypt_to_usmc(&carol_ctext, &mut carol_store.identity_store, None)
.await?;
assert_eq!(carol_usmc.serialized()?, bob_usmc.serialized()?);
let carol_plaintext = group_decrypt(
carol_usmc.contents()?,
&mut carol_store,
&alice_uuid_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(carol_plaintext).expect("valid utf8"),
"space camp?"
);
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_large_messages() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
let mut large_message: Vec<u8> = Vec::with_capacity(1024);
for _ in 0..large_message.capacity() {
large_message.push(csprng.gen());
}
let alice_ciphertext = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
&large_message,
&mut csprng,
None,
)
.await?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let bob_plaintext = group_decrypt(
alice_ciphertext.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(bob_plaintext, large_message);
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_basic_ratchet() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let alice_ciphertext1 = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"swim camp".as_bytes(),
&mut csprng,
None,
)
.await?;
let alice_ciphertext2 = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"robot camp".as_bytes(),
&mut csprng,
None,
)
.await?;
let alice_ciphertext3 = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"ninja camp".as_bytes(),
&mut csprng,
None,
)
.await?;
let bob_plaintext1 = group_decrypt(
alice_ciphertext1.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext1).expect("valid utf8"),
"swim camp"
);
assert!(matches!(
group_decrypt(
alice_ciphertext1.serialized(),
&mut bob_store,
&sender_address,
None
)
.await,
Err(SignalProtocolError::DuplicatedMessage(1, 0))
));
let bob_plaintext3 = group_decrypt(
alice_ciphertext3.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext3).expect("valid utf8"),
"ninja camp"
);
let bob_plaintext2 = group_decrypt(
alice_ciphertext2.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext2).expect("valid utf8"),
"robot camp"
);
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_late_join() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
for i in 0..100 {
group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
format!("nefarious plotting {}/100", i).as_bytes(),
&mut csprng,
None,
)
.await?;
}
// now bob joins:
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let alice_ciphertext = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"welcome bob".as_bytes(),
&mut csprng,
None,
)
.await?;
let bob_plaintext = group_decrypt(
alice_ciphertext.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?;
assert_eq!(
String::from_utf8(bob_plaintext).expect("valid utf8"),
"welcome bob"
);
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_out_of_order() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let mut ciphertexts = Vec::with_capacity(100);
for i in 0..ciphertexts.capacity() {
ciphertexts.push(
group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
format!("nefarious plotting {:02}/100", i).as_bytes(),
&mut csprng,
None,
)
.await?,
);
}
ciphertexts.shuffle(&mut csprng);
let mut plaintexts = Vec::with_capacity(ciphertexts.len());
for ciphertext in ciphertexts {
plaintexts.push(
group_decrypt(
ciphertext.serialized(),
&mut bob_store,
&sender_address,
None,
)
.await?,
);
}
plaintexts.sort();
for (i, plaintext) in plaintexts.iter().enumerate() {
assert_eq!(
String::from_utf8(plaintext.to_vec()).expect("valid utf8"),
format!("nefarious plotting {:02}/100", i)
);
}
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
#[ignore = "slow to run locally"]
fn group_too_far_in_the_future() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
for i in 0..25001 {
group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
format!("nefarious plotting {}", i).as_bytes(),
&mut csprng,
None,
)
.await?;
}
let alice_ciphertext = group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"you got the plan?".as_bytes(),
&mut csprng,
None,
)
.await?;
assert!(group_decrypt(
alice_ciphertext.serialized(),
&mut bob_store,
&sender_address,
None
)
.await
.is_err());
Ok(())
}
.now_or_never()
.expect("sync")
}
#[test]
fn group_message_key_limit() -> Result<(), SignalProtocolError> {
async {
let mut csprng = OsRng;
let sender_address = ProtocolAddress::new("+14159999111".to_owned(), 1);
let distribution_id = Uuid::from_u128(0xd1d1d1d1_7000_11eb_b32a_33b8a8a487a6);
let mut alice_store = test_in_memory_protocol_store()?;
let mut bob_store = test_in_memory_protocol_store()?;
let sent_distribution_message = create_sender_key_distribution_message(
&sender_address,
distribution_id,
&mut alice_store,
&mut csprng,
None,
)
.await?;
let recv_distribution_message =
SenderKeyDistributionMessage::try_from(sent_distribution_message.serialized())?;
process_sender_key_distribution_message(
&sender_address,
&recv_distribution_message,
&mut bob_store,
None,
)
.await?;
let mut ciphertexts = Vec::with_capacity(2010);
for _ in 0..ciphertexts.capacity() {
ciphertexts.push(
group_encrypt(
&mut alice_store,
&sender_address,
distribution_id,
"too many messages".as_bytes(),
&mut csprng,
None,
)
.await?
.serialized()
.to_vec(),
);
}
assert_eq!(
String::from_utf8(
group_decrypt(&ciphertexts[1000], &mut bob_store, &sender_address, None,).await?
)
.expect("valid utf8"),
"too many messages"
);
assert_eq!(
String::from_utf8(
group_decrypt(
&ciphertexts[ciphertexts.len() - 1],
&mut bob_store,
&sender_address,
None,
)
.await?
)
.expect("valid utf8"),
"too many messages"
);
assert!(
group_decrypt(&ciphertexts[0], &mut bob_store, &sender_address, None)
.await
.is_err()
);
Ok(())
}
.now_or_never()
.expect("sync")
}
Reference in New Issue View Git Blame Copy Permalink