def test_sas_share_keys(self):
alice = Sas(
alice_id,
alice_device_id,
alice_keys["ed25519"],
bob_device,
)
start = {"sender": alice_id, "content": alice.start_verification()}
start_event = KeyVerificationStart.from_dict(start)
bob = Sas.from_key_verification_start(bob_id, bob_device_id,
bob_keys["ed25519"],
alice_device, start_event)
accept = {"sender": bob_id, "content": bob.accept_verification()}
accept_event = KeyVerificationAccept.from_dict(accept)
alice.receive_accept_event(accept_event)
alice_key = {"sender": alice_id, "content": alice.share_key()}
key_event = KeyVerificationKey.from_dict(alice_key)
assert isinstance(key_event, KeyVerificationKey)
bob.receive_key_event(key_event)
assert bob.state == SasState.key_received
bob_key = {"sender": bob_id, "content": bob.share_key()}
key_event = KeyVerificationKey.from_dict(bob_key)
assert isinstance(key_event, KeyVerificationKey)
alice.receive_key_event(key_event)
assert alice.state == SasState.key_received
assert alice.get_emoji() == bob.get_emoji()
def test_sas_invalid_commitment(self):
alice = Sas(
alice_id,
alice_device_id,
alice_keys["ed25519"],
bob_device,
)
start = {"sender": alice_id, "content": alice.start_verification()}
start_event = KeyVerificationStart.from_dict(start)
bob = Sas.from_key_verification_start(bob_id, bob_device_id,
bob_keys["ed25519"],
alice_device, start_event)
accept = {"sender": bob_id, "content": bob.accept_verification()}
accept_event = KeyVerificationAccept.from_dict(accept)
alice.receive_accept_event(accept_event)
alice_key = {"sender": alice_id, "content": alice.share_key()}
key_event = KeyVerificationKey.from_dict(alice_key)
assert isinstance(key_event, KeyVerificationKey)
bob.receive_key_event(key_event)
assert bob.state == SasState.key_received
bob_key = {"sender": bob_id, "content": bob.share_key()}
bob_key["content"]["key"] = alice.pubkey
key_event = KeyVerificationKey.from_dict(bob_key)
assert isinstance(key_event, KeyVerificationKey)
alice.receive_key_event(key_event)
assert alice.state == SasState.canceled
def test_client_full_sas(self, olm_machine):
alice_device = OlmDevice(olm_machine.user_id, olm_machine.device_id,
olm_machine.account.identity_keys)
bob_device = olm_machine.device_store[bob_id][bob_device_id]
bob_sas = Sas(
bob_id,
bob_device_id,
bob_device.ed25519,
alice_device,
)
start = {
"sender": bob_id,
"content": bob_sas.start_verification().content
}
start_event = KeyVerificationStart.from_dict(start)
assert olm_machine.device_store[bob_id][bob_device_id]
olm_machine.handle_key_verification(start_event)
alice_sas = olm_machine.key_verifications[start_event.transaction_id]
accept = {
"sender": olm_machine.user_id,
"content": alice_sas.accept_verification().content
}
accept_event = KeyVerificationAccept.from_dict(accept)
bob_sas.receive_accept_event(accept_event)
bob_key = {"sender": bob_id, "content": bob_sas.share_key().content}
bob_key_event = KeyVerificationKey.from_dict(bob_key)
olm_machine.handle_key_verification(bob_key_event)
alice_key = {
"sender": alice_id,
"content": alice_sas.share_key().content
}
alice_key_event = KeyVerificationKey.from_dict(alice_key)
bob_sas.receive_key_event(alice_key_event)
assert alice_sas.other_key_set
assert bob_sas.other_key_set
bob_sas.accept_sas()
bob_mac = {"sender": bob_id, "content": bob_sas.get_mac().content}
bob_mac_event = KeyVerificationMac.from_dict(bob_mac)
olm_machine.handle_key_verification(bob_mac_event)
assert alice_sas.state == SasState.mac_received
assert not alice_sas.verified
alice_sas.accept_sas()
assert alice_sas.verified
bob_mac_event.keys = "fake_keys"
olm_machine.handle_key_verification(bob_mac_event)
assert alice_sas.verified
def test_client_invalid_key(self, olm_machine):
alice_device = OlmDevice(olm_machine.user_id, olm_machine.device_id,
olm_machine.account.identity_keys)
bob_sas = Sas(
bob_id,
bob_device_id,
faker.olm_key_pair()["ed25519"],
alice_device,
)
start = {
"sender": bob_id,
"content": bob_sas.start_verification().content
}
start_event = KeyVerificationStart.from_dict(start)
assert olm_machine.device_store[bob_id][bob_device_id]
olm_machine.handle_key_verification(start_event)
alice_sas = olm_machine.key_verifications[start_event.transaction_id]
accept = {
"sender": olm_machine.user_id,
"content": alice_sas.accept_verification().content
}
accept_event = KeyVerificationAccept.from_dict(accept)
bob_sas.receive_accept_event(accept_event)
bob_key = {"sender": bob_id, "content": bob_sas.share_key().content}
bob_key_event = KeyVerificationKey.from_dict(bob_key)
olm_machine.handle_key_verification(bob_key_event)
alice_key = {
"sender": alice_id,
"content": alice_sas.share_key().content
}
alice_key_event = KeyVerificationKey.from_dict(alice_key)
bob_sas.receive_key_event(alice_key_event)
assert alice_sas.other_key_set
assert bob_sas.other_key_set
bob_sas.accept_sas()
bob_mac = {"sender": bob_id, "content": bob_sas.get_mac().content}
bob_mac_event = KeyVerificationMac.from_dict(bob_mac)
olm_machine.handle_key_verification(bob_mac_event)
assert alice_sas.state == SasState.canceled
assert not alice_sas.verified
with pytest.raises(LocalProtocolError):
alice_sas.accept_sas()