veilid/veilid-python/tests/test_crypto.py

# Crypto veilid tests

import pytest
import veilid
from veilid.api import CryptoSystem
import gc


@pytest.mark.asyncio
async def test_best_crypto_system(api_connection: veilid.VeilidAPI):
    cs: CryptoSystem = await api_connection.best_crypto_system()
    async with cs:
        assert await cs.default_salt_length() == 16


@pytest.mark.asyncio
async def test_get_crypto_system(api_connection: veilid.VeilidAPI):
    cs: CryptoSystem = await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_VLD0)
    async with cs:
        assert await cs.default_salt_length() == 16


@pytest.mark.asyncio
async def test_get_crypto_system_invalid(api_connection: veilid.VeilidAPI):
    with pytest.raises(veilid.VeilidAPIErrorInvalidArgument) as exc:
        await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_NONE)

    assert exc.value.context == "unsupported cryptosystem"
    assert exc.value.argument == "kind"
    assert exc.value.value == "NONE"


@pytest.mark.asyncio
async def test_hash_and_verify_password(api_connection: veilid.VeilidAPI):
    cs = await api_connection.best_crypto_system()
    async with cs:
        nonce = await cs.random_nonce()
        salt = nonce.to_bytes()

        # Password match
        phash = await cs.hash_password(b"abc123", salt)
        assert await cs.verify_password(b"abc123", phash)

        # Password mismatch
        phash2 = await cs.hash_password(b"abc1234", salt)
        assert not await cs.verify_password(b"abc12345", phash)


@pytest.mark.asyncio
async def test_generate_shared_secret(api_connection: veilid.VeilidAPI):
    cs = await api_connection.best_crypto_system()
    async with cs:
        kp1 = await cs.generate_key_pair()
        kp2 = await cs.generate_key_pair()
        kp3 = await cs.generate_key_pair()

        ssA = await cs.generate_shared_secret(kp1.key(), kp2.secret(), b"abc123")
        ssB = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc123")

        assert ssA == ssB

        ssC = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc1234")

        assert ssA != ssC

        ssD = await cs.generate_shared_secret(kp3.key(), kp1.secret(), b"abc123")

        assert ssA != ssD
better error handling 2023-06-15 20:22:54 -04:00			`# Crypto veilid tests`
more tests 2023-06-14 21:06:10 -04:00
			`import pytest`
Big refactoring sweep through tests 2023-06-17 14:34:09 -04:00			`import veilid`
			`from veilid.api import CryptoSystem`
test work 2023-06-18 18:47:39 -04:00			`import gc`
Big refactoring sweep through tests 2023-06-17 14:34:09 -04:00

more tests 2023-06-14 21:06:10 -04:00			`@pytest.mark.asyncio`
test work 2023-06-18 18:47:39 -04:00			`async def test_best_crypto_system(api_connection: veilid.VeilidAPI):`
			`cs: CryptoSystem = await api_connection.best_crypto_system()`
			`async with cs:`
			`assert await cs.default_salt_length() == 16`
Big refactoring sweep through tests 2023-06-17 14:34:09 -04:00
Run Black on veilid-python 2023-07-22 13:06:46 -04:00
more tests 2023-06-14 21:06:10 -04:00			`@pytest.mark.asyncio`
test work 2023-06-18 18:47:39 -04:00			`async def test_get_crypto_system(api_connection: veilid.VeilidAPI):`
Run Black on veilid-python 2023-07-22 13:06:46 -04:00			`cs: CryptoSystem = await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_VLD0)`
test work 2023-06-18 18:47:39 -04:00			`async with cs:`
			`assert await cs.default_salt_length() == 16`
Run Black on veilid-python 2023-07-22 13:06:46 -04:00
Big refactoring sweep through tests 2023-06-17 14:34:09 -04:00
more tests 2023-06-14 21:06:10 -04:00			`@pytest.mark.asyncio`
test work 2023-06-18 18:47:39 -04:00			`async def test_get_crypto_system_invalid(api_connection: veilid.VeilidAPI):`
Big refactoring sweep through tests 2023-06-17 14:34:09 -04:00			`with pytest.raises(veilid.VeilidAPIErrorInvalidArgument) as exc:`
			`await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_NONE)`

			`assert exc.value.context == "unsupported cryptosystem"`
			`assert exc.value.argument == "kind"`
			`assert exc.value.value == "NONE"`

more tests 2023-06-14 21:06:10 -04:00
better error handling 2023-06-15 20:22:54 -04:00			`@pytest.mark.asyncio`
test work 2023-06-18 18:47:39 -04:00			`async def test_hash_and_verify_password(api_connection: veilid.VeilidAPI):`
			`cs = await api_connection.best_crypto_system()`
			`async with cs:`
			`nonce = await cs.random_nonce()`
			`salt = nonce.to_bytes()`

			`# Password match`
			`phash = await cs.hash_password(b"abc123", salt)`
			`assert await cs.verify_password(b"abc123", phash)`

			`# Password mismatch`
			`phash2 = await cs.hash_password(b"abc1234", salt)`
			`assert not await cs.verify_password(b"abc12345", phash)`
improve route selection and add generate_shared_secret 2024-03-18 10:10:10 -04:00

			`@pytest.mark.asyncio`
			`async def test_generate_shared_secret(api_connection: veilid.VeilidAPI):`
			`cs = await api_connection.best_crypto_system()`
			`async with cs:`
			`kp1 = await cs.generate_key_pair()`
			`kp2 = await cs.generate_key_pair()`
			`kp3 = await cs.generate_key_pair()`

			`ssA = await cs.generate_shared_secret(kp1.key(), kp2.secret(), b"abc123")`
			`ssB = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc123")`

			`assert ssA == ssB`

			`ssC = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc1234")`

			`assert ssA != ssC`

			`ssD = await cs.generate_shared_secret(kp3.key(), kp1.secret(), b"abc123")`

			`assert ssA != ssD`