mirror of https://github.com/poanetwork/gecko.git
380 lines
9.0 KiB
Go
380 lines
9.0 KiB
Go
// (c) 2019-2020, Ava Labs, Inc. All rights reserved.
|
|
// See the file LICENSE for licensing terms.
|
|
|
|
package keystore
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"math/rand"
|
|
"reflect"
|
|
"testing"
|
|
|
|
"github.com/ava-labs/gecko/ids"
|
|
)
|
|
|
|
var (
|
|
// strongPassword defines a password used for the following tests that
|
|
// scores high enough to pass the password strength scoring system
|
|
strongPassword = "N_+=_jJ;^(<;{4,:*m6CET}'&N;83FYK.wtNpwp-Jt"
|
|
)
|
|
|
|
func TestServiceListNoUsers(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
reply := ListUsersReply{}
|
|
if err := ks.ListUsers(nil, &ListUsersArgs{}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if len(reply.Users) != 0 {
|
|
t.Fatalf("No users should have been created yet")
|
|
}
|
|
}
|
|
|
|
func TestServiceCreateUser(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if !reply.Success {
|
|
t.Fatalf("User should have been created successfully")
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := ListUsersReply{}
|
|
if err := ks.ListUsers(nil, &ListUsersArgs{}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if len(reply.Users) != 1 {
|
|
t.Fatalf("One user should have been created")
|
|
}
|
|
if user := reply.Users[0]; user != "bob" {
|
|
t.Fatalf("'bob' should have been a user that was created")
|
|
}
|
|
}
|
|
}
|
|
|
|
// genStr returns a string of given length
|
|
func genStr(n int) string {
|
|
b := make([]byte, n)
|
|
rand.Read(b)
|
|
return fmt.Sprintf("%x", b)[:n]
|
|
}
|
|
|
|
// TestServiceCreateUserArgsChecks generates excessively long usernames or
|
|
// passwords to assure the santity checks on string length are not exceeded
|
|
func TestServiceCreateUserArgsCheck(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: genStr(maxUserPassLen + 1),
|
|
Password: strongPassword,
|
|
}, &reply)
|
|
|
|
if reply.Success || err != errUserPassMaxLength {
|
|
t.Fatal("User was created when it should have been rejected due to too long a Username, err =", err)
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "shortuser",
|
|
Password: genStr(maxUserPassLen + 1),
|
|
}, &reply)
|
|
|
|
if reply.Success || err != errUserPassMaxLength {
|
|
t.Fatal("User was created when it should have been rejected due to too long a Password, err =", err)
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := ListUsersReply{}
|
|
if err := ks.ListUsers(nil, &ListUsersArgs{}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
if len(reply.Users) > 0 {
|
|
t.Fatalf("A user exists when there should be none")
|
|
}
|
|
}
|
|
}
|
|
|
|
// TestServiceCreateUserWeakPassword tests creating a new user with a weak
|
|
// password to ensure the password strength check is working
|
|
func TestServiceCreateUserWeakPassword(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: "weak",
|
|
}, &reply)
|
|
|
|
if err != errWeakPassword {
|
|
t.Error("Unexpected error occurred when testing weak password:", err)
|
|
}
|
|
|
|
if reply.Success {
|
|
t.Fatal("User was created when it should have been rejected due to weak password")
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestServiceCreateDuplicate(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if !reply.Success {
|
|
t.Fatalf("User should have been created successfully")
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &reply); err == nil {
|
|
t.Fatalf("Should have errored due to the username already existing")
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestServiceCreateUserNoName(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Password: strongPassword,
|
|
}, &reply); err == nil {
|
|
t.Fatalf("Shouldn't have allowed empty username")
|
|
}
|
|
}
|
|
|
|
func TestServiceUseBlockchainDB(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if !reply.Success {
|
|
t.Fatalf("User should have been created successfully")
|
|
}
|
|
}
|
|
|
|
{
|
|
db, err := ks.GetDatabase(ids.Empty, "bob", strongPassword)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := db.Put([]byte("hello"), []byte("world")); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
}
|
|
|
|
{
|
|
db, err := ks.GetDatabase(ids.Empty, "bob", strongPassword)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if val, err := db.Get([]byte("hello")); err != nil {
|
|
t.Fatal(err)
|
|
} else if !bytes.Equal(val, []byte("world")) {
|
|
t.Fatalf("Should have read '%s' from the db", "world")
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestServiceExportImport(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if !reply.Success {
|
|
t.Fatalf("User should have been created successfully")
|
|
}
|
|
}
|
|
|
|
{
|
|
db, err := ks.GetDatabase(ids.Empty, "bob", strongPassword)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if err := db.Put([]byte("hello"), []byte("world")); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
}
|
|
|
|
exportReply := ExportUserReply{}
|
|
if err := ks.ExportUser(nil, &ExportUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
}, &exportReply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
|
|
newKS := CreateTestKeystore(t)
|
|
|
|
{
|
|
reply := ImportUserReply{}
|
|
if err := newKS.ImportUser(nil, &ImportUserArgs{
|
|
Username: "bob",
|
|
Password: "",
|
|
User: exportReply.User,
|
|
}, &reply); err == nil {
|
|
t.Fatal("Should have errored due to incorrect password")
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := ImportUserReply{}
|
|
if err := newKS.ImportUser(nil, &ImportUserArgs{
|
|
Username: "",
|
|
Password: "strongPassword",
|
|
User: exportReply.User,
|
|
}, &reply); err == nil {
|
|
t.Fatal("Should have errored due to empty username")
|
|
}
|
|
}
|
|
|
|
{
|
|
reply := ImportUserReply{}
|
|
if err := newKS.ImportUser(nil, &ImportUserArgs{
|
|
Username: "bob",
|
|
Password: strongPassword,
|
|
User: exportReply.User,
|
|
}, &reply); err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if !reply.Success {
|
|
t.Fatalf("User should have been imported successfully")
|
|
}
|
|
}
|
|
|
|
{
|
|
db, err := newKS.GetDatabase(ids.Empty, "bob", strongPassword)
|
|
if err != nil {
|
|
t.Fatal(err)
|
|
}
|
|
if val, err := db.Get([]byte("hello")); err != nil {
|
|
t.Fatal(err)
|
|
} else if !bytes.Equal(val, []byte("world")) {
|
|
t.Fatalf("Should have read '%s' from the db", "world")
|
|
}
|
|
}
|
|
}
|
|
|
|
func TestServiceDeleteUser(t *testing.T) {
|
|
testUser := "testUser"
|
|
password := "passwTest@fake01ord"
|
|
tests := []struct {
|
|
desc string
|
|
setup func(ks *Keystore) error
|
|
request *DeleteUserArgs
|
|
want *DeleteUserReply
|
|
wantError bool
|
|
}{{
|
|
desc: "empty user name case",
|
|
request: &DeleteUserArgs{},
|
|
wantError: true,
|
|
}, {
|
|
desc: "user not exists case",
|
|
request: &DeleteUserArgs{Username: "dummy"},
|
|
wantError: true,
|
|
}, {
|
|
desc: "user exists and invalid password case",
|
|
request: &DeleteUserArgs{Username: testUser, Password: "password"},
|
|
wantError: true,
|
|
}, {
|
|
desc: "user exists and valid password case",
|
|
setup: func(ks *Keystore) error {
|
|
return ks.CreateUser(nil, &CreateUserArgs{Username: testUser, Password: password}, &CreateUserReply{})
|
|
},
|
|
request: &DeleteUserArgs{Username: testUser, Password: password},
|
|
want: &DeleteUserReply{Success: true},
|
|
}, {
|
|
desc: "delete a user, imported from import api case",
|
|
setup: func(ks *Keystore) error {
|
|
|
|
reply := CreateUserReply{}
|
|
if err := ks.CreateUser(nil, &CreateUserArgs{Username: testUser, Password: password}, &reply); err != nil {
|
|
return err
|
|
}
|
|
|
|
// created data in bob db
|
|
db, err := ks.GetDatabase(ids.Empty, testUser, password)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if err := db.Put([]byte("hello"), []byte("world")); err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
},
|
|
request: &DeleteUserArgs{Username: testUser, Password: password},
|
|
want: &DeleteUserReply{Success: true},
|
|
}}
|
|
|
|
for _, tt := range tests {
|
|
t.Run(tt.desc, func(t *testing.T) {
|
|
ks := CreateTestKeystore(t)
|
|
|
|
if tt.setup != nil {
|
|
if err := tt.setup(ks); err != nil {
|
|
t.Fatalf("failed to create user setup in keystore: %v", err)
|
|
}
|
|
}
|
|
got := &DeleteUserReply{}
|
|
err := ks.DeleteUser(nil, tt.request, got)
|
|
if (err != nil) != tt.wantError {
|
|
t.Fatalf("DeleteUser() failed: error %v, wantError %v", err, tt.wantError)
|
|
}
|
|
|
|
if !tt.wantError && !reflect.DeepEqual(tt.want, got) {
|
|
t.Fatalf("DeleteUser() failed: got %v, want %v", got, tt.want)
|
|
}
|
|
|
|
if err == nil && got.Success { // delete is successful
|
|
if _, ok := ks.users[testUser]; ok {
|
|
t.Fatalf("DeleteUser() failed: expected the user %s should be delete from users map", testUser)
|
|
}
|
|
|
|
// deleted user details should be available to create user again.
|
|
if err = ks.CreateUser(nil, &CreateUserArgs{Username: testUser, Password: password}, &CreateUserReply{}); err != nil {
|
|
t.Fatalf("failed to create user: %v", err)
|
|
}
|
|
}
|
|
})
|
|
}
|
|
}
|