# Crypto veilid tests import pytest import veilid from veilid.api import CryptoSystem import gc @pytest.mark.asyncio async def test_best_crypto_system(api_connection: veilid.VeilidAPI): cs: CryptoSystem = await api_connection.best_crypto_system() async with cs: assert await cs.default_salt_length() == 16 @pytest.mark.asyncio async def test_get_crypto_system(api_connection: veilid.VeilidAPI): cs: CryptoSystem = await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_VLD0) async with cs: assert await cs.default_salt_length() == 16 @pytest.mark.asyncio async def test_get_crypto_system_invalid(api_connection: veilid.VeilidAPI): with pytest.raises(veilid.VeilidAPIErrorInvalidArgument) as exc: await api_connection.get_crypto_system(veilid.CryptoKind.CRYPTO_KIND_NONE) assert exc.value.context == "unsupported cryptosystem" assert exc.value.argument == "kind" assert exc.value.value == "NONE" @pytest.mark.asyncio async def test_hash_and_verify_password(api_connection: veilid.VeilidAPI): cs = await api_connection.best_crypto_system() async with cs: nonce = await cs.random_nonce() salt = nonce.to_bytes() # Password match phash = await cs.hash_password(b"abc123", salt) assert await cs.verify_password(b"abc123", phash) # Password mismatch phash2 = await cs.hash_password(b"abc1234", salt) assert not await cs.verify_password(b"abc12345", phash) @pytest.mark.asyncio async def test_generate_shared_secret(api_connection: veilid.VeilidAPI): cs = await api_connection.best_crypto_system() async with cs: kp1 = await cs.generate_key_pair() kp2 = await cs.generate_key_pair() kp3 = await cs.generate_key_pair() ssA = await cs.generate_shared_secret(kp1.key(), kp2.secret(), b"abc123") ssB = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc123") assert ssA == ssB ssC = await cs.generate_shared_secret(kp2.key(), kp1.secret(), b"abc1234") assert ssA != ssC ssD = await cs.generate_shared_secret(kp3.key(), kp1.secret(), b"abc123") assert ssA != ssD