frostfs-api-go/state/sign_test.go

package state

import (
	"testing"

	"github.com/nspcc-dev/neofs-api-go/service"
	"github.com/nspcc-dev/neofs-crypto/test"
	"github.com/stretchr/testify/require"
)

func TestRequestSign(t *testing.T) {
	sk := test.DecodeKey(0)

	type sigType interface {
		service.RequestData
		service.SignKeyPairAccumulator
		service.SignKeyPairSource
		SetToken(*service.Token)
	}

	items := []struct {
		constructor    func() sigType
		payloadCorrupt []func(sigType)
	}{
		{ // NetmapRequest
			constructor: func() sigType {
				return new(NetmapRequest)
			},
		},
		{ // MetricsRequest
			constructor: func() sigType {
				return new(MetricsRequest)
			},
		},
		{ // HealthRequest
			constructor: func() sigType {
				return new(HealthRequest)
			},
		},
		{ // DumpRequest
			constructor: func() sigType {
				return new(DumpRequest)
			},
		},
		{ // DumpVarsRequest
			constructor: func() sigType {
				return new(DumpVarsRequest)
			},
		},
		{
			constructor: func() sigType {
				return new(ChangeStateRequest)
			},
			payloadCorrupt: []func(sigType){
				func(s sigType) {
					req := s.(*ChangeStateRequest)

					req.SetState(req.GetState() + 1)
				},
			},
		},
	}

	for _, item := range items {
		{ // token corruptions
			v := item.constructor()

			token := new(service.Token)
			v.SetToken(token)

			require.NoError(t, service.SignRequestData(sk, v))

			require.NoError(t, service.VerifyRequestData(v))

			token.SetSessionKey(append(token.GetSessionKey(), 1))

			require.Error(t, service.VerifyRequestData(v))
		}

		{ // payload corruptions
			for _, corruption := range item.payloadCorrupt {
				v := item.constructor()

				require.NoError(t, service.SignRequestData(sk, v))

				require.NoError(t, service.VerifyRequestData(v))

				corruption(v)

				require.Error(t, service.VerifyRequestData(v))
			}
		}
	}
}
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00			`package state`

			`import (`
			`"testing"`

			`"github.com/nspcc-dev/neofs-api-go/service"`
			`"github.com/nspcc-dev/neofs-crypto/test"`
			`"github.com/stretchr/testify/require"`
			`)`

			`func TestRequestSign(t *testing.T) {`
			`sk := test.DecodeKey(0)`

			`type sigType interface {`
service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`service.RequestData`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00			`service.SignKeyPairAccumulator`
			`service.SignKeyPairSource`
			`SetToken(*service.Token)`
			`}`

			`items := []struct {`
			`constructor func() sigType`
			`payloadCorrupt []func(sigType)`
			`}{`
			`{ // NetmapRequest`
			`constructor: func() sigType {`
			`return new(NetmapRequest)`
			`},`
			`},`
state: implement SignedDataSource on MetricsRequest message 2020-05-11 13:11:17 +00:00			`{ // MetricsRequest`
			`constructor: func() sigType {`
			`return new(MetricsRequest)`
			`},`
			`},`
state: implement SignedDataSource on HealthRequest message 2020-05-11 13:12:49 +00:00			`{ // HealthRequest`
			`constructor: func() sigType {`
			`return new(HealthRequest)`
			`},`
			`},`
state: implement SignedDataSource on DumpRequest message 2020-05-11 13:15:31 +00:00			`{ // DumpRequest`
			`constructor: func() sigType {`
			`return new(DumpRequest)`
			`},`
			`},`
state: implement SignedDataSource on DumpVarsRequest message 2020-05-11 13:16:54 +00:00			`{ // DumpVarsRequest`
			`constructor: func() sigType {`
			`return new(DumpVarsRequest)`
			`},`
			`},`
state: implement SignedDataSource on ChangeStateRequest message 2020-05-11 13:31:39 +00:00			`{`
			`constructor: func() sigType {`
			`return new(ChangeStateRequest)`
			`},`
			`payloadCorrupt: []func(sigType){`
			`func(s sigType) {`
			`req := s.(*ChangeStateRequest)`

			`req.SetState(req.GetState() + 1)`
			`},`
			`},`
			`},`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00			`}`

			`for _, item := range items {`
			`{ // token corruptions`
			`v := item.constructor()`

			`token := new(service.Token)`
			`v.SetToken(token)`

service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.NoError(t, service.SignRequestData(sk, v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00
service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.NoError(t, service.VerifyRequestData(v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00
			`token.SetSessionKey(append(token.GetSessionKey(), 1))`

service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.Error(t, service.VerifyRequestData(v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00			`}`

			`{ // payload corruptions`
			`for _, corruption := range item.payloadCorrupt {`
			`v := item.constructor()`

service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.NoError(t, service.SignRequestData(sk, v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00
service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.NoError(t, service.VerifyRequestData(v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00
			`corruption(v)`

service: support broken apart signable payload of the requests In previous implementation service package provided types and functions that wrapped signing/verification of data with session token. This allowed us to use these functions for signing / verification of service requests of other packages. To support the expansion of messages with additional parts that need to be signed, you must be able to easily expand the signed data with new parts. To achieve the described goal, this commit makes the following changes: * adds GroupSignedPayloads and GroupVerifyPayloads functions; * renames SignedDataWithToken to RequestData, DataWithTokenSignAccumulator to RequestSignedData, DataWithTokenSignSource to RequestVerifyData; * renames SignDataWithSessionToken/VerifyAccumulatedSignaturesWithToken function to SignRequestData/VerifyRequestData and makes it to use GroupSignedPayloads/GroupVerifyPayloads internally. 2020-06-10 17:22:34 +00:00			`require.Error(t, service.VerifyRequestData(v))`
state: implement SignedDataSource on NetmapRequest message 2020-05-11 13:05:41 +00:00			`}`
			`}`
			`}`
			`}`